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(5 7) Abstract: 

PROBLEM TO BE SOLVED: To realize a system capable of upgrading contents use 
conditions by eliminating the need of the contents use authority control by users on a 
service provider side. 

SOLUTION: In this system, enciphered contents are distributed, and the use of the 
contents is allowed by only formal users. A service provider receives a contents use 



authority certificate from the users, acquires the user information and the contents 
purchase information of the users from the contents use authority certificate on 
conditions that it is confirmed by the verification of the electronic signature of the issue 
entity of the contents use authority certificate that data is not tampered, and the 
upgrade processing of use condition alteration is performed. Thus a contents use 
condition alteration processing can be performed even if the service provider side does 
not have user control data. 
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CLAIMS 



[Claim(s)] 

[Claim 1] It has a user device using contents, and the service provider which 
distributes the contents use authority certificate which stored contents use condition 
information to a user device. While said user device has the configuration which 
performs contents use according to the contents use condition information stored in 
the contents use authority certificate received from said service provider Said 
contents use authority certificate is sent to said service provider. It has the 
configuration which performs a modification processing demand of the contents use 
condition information stored in the contents use authority certificate. Said service 
provider It responds to reception of said contents use authority certificate 
accompanied by a modification processing demand of the contents use condition 
information from said user device. The contents use authority administration system 
characterized by having the configuration which performs processing which generates 
the upgrade contents use authority certificate which changed the contents use 
condition information recorded on the received contents use authority certificate, and 
is transmitted to a user device. 

[Claim 2] The encryption contents key which enciphered Kc is stored. A contents key 
for said contents use authority certificate to decode encryption contents : said user 
device It is contingent [ on the judgment of being contents use according to the 
contents use condition information stored in the contents use authority certificate 
received from said service provider ]. The contents use authority administration 
system according to claim 1 characterized by being the configuration which performs 
decode of said encryption contents key and acquires a contents key. 
[Claim 3] The encryption contents key which enciphered Kc is stored. A contents key 
for said contents use authority certificate to decode encryption contents : said user 
device On the occasion of contents use, judgment processing of whether to be 
contents use according to the contents use condition information stored in the 
contents use authority certificate received from said service provider is performed. It 
is contingent [ on the judgment according to contents use conditions that it was 
contents use having been obtained based on the judgment result ]. The contents use 



authority administration system according to claim 1 characterized by having the 
configuration which performs decryption processing of the encryption contents key 
stored in said contents use authority certificate based on the key stored in the user 
device. 

[Claim 4] The encryption contents key which enciphered Kc is stored. A contents key 
for said contents use authority certificate to decode encryption contents : said 
service provider On the occasion of the contents use in a user device, a sent 
contents use authority certificate is received from this user device. Judgment 
processing of whether to be contents use according to the contents use condition 
information stored in the received contents use authority certificate is performed. It is 
contingent [ on the judgment according to contents use conditions that it was 
contents use having been obtained based on the judgment result ]. The contents use 
authority administration system according to claim 1 characterized by having the 
configuration which performs decryption processing of the encryption contents key 
stored in said contents use authority certificate based on a service provider proper 
key. 

[Claim 5] The contents use condition information stored in said contents use 
authority certificate Contents buying up which does not prepare contents use time 
limitation information, the count limit information of contents use, and a use limit is 
either [ like ] 3 voice. A modification processing demand of the use condition 
information on the contents from said user device Modification of contents use time 
limitation, or modification of the count limit of contents use, Either is included even if 
there are little use time limitation, count limit of use, and modification between 3 
modes of buying up. Or said service provider According to reception of said contents 
use authority certificate accompanied by a modification processing demand of the use 
condition information on the contents from said user device, as modification 
processing of the contents use condition information recorded on the received 
contents use authority certificate Modification of contents use time limitation, or 
modification of the count limit of contents use, Or even if there are little use time 
limitation, count limit of use, and modification between 3 modes of buying up, perform 
either and an upgrade contents use authority certificate is generated. The contents 
use authority administration system according to claim 1 characterized by having the 
configuration which performs processing transmitted to a user device. 
[Claim 6] The online use processing which makes an indispensable condition use 
authority judging processing in a service provider at the contents use conditions 
stored in said contents use authority certificate, The use condition information that 



either of the off-line use processings which make unnecessary use authority judging 
processing in a service provider was set up is included. Or said service provider 
According to reception of said contents use authority certificate accompanied by a 
modification processing demand of the use condition information on the contents from 
said user device, as modification processing of the contents use condition information 
recorded on the received contents use authority certificate The contents use 
authority administration system according to claim 1 characterized by having the 
configuration which performs use condition change information between online use 
processing and off-line use processing, and performs processing which generates an 
upgrade contents use authority certificate and is transmitted to a user device. 
[Claim 7] Said contents use authority certificate is a contents use authority 
administration system according to claim 1 characterized by being the configuration 
that the electronic signature of the issue entity of this contents use authority 
certificate was added, and said service provider being the configuration of performing 
the check of there being no data alteration of the generation processing of an upgrade 
contents use authority certificate based on reception of said contents use authority 
certificate by verification of said electronic signature as conditions. 
[Claim 8] Said contents use authority certificate is the contents use 
authority-administration system according to claim 1 which is the configuration of 
having stored the link information about the public key certificate corresponding to 
this contents use authority certificate, and is characterized by to be the configuration 
of performing the justification check of this contents use authority certificate as 
conditions by verification of the public key certificate with which said service provider 
is acquired by said link information in the generation processing of an upgrade 
contents use authority certificate based on reception of said contents use authority 
certificate. 

[Claim 9] Said contents use authority certificate is a contents use authority 
administration system according to claim 1 characterized by being the attribute 
certificate which an attribute certificate certificate authority publishes, and being the 
configuration of having stored in attribute information field attribute certification in 
the letter the encryption contents key which enciphered the contents key applied to 
decode of contents. 

[Claim 10] Said contents use authority certificate is a contents use authority 
administration system according to claim 1 characterized by being the attribute 
certificate which an attribute certificate certificate authority publishes, and being the 
configuration of having stored the use conditions of contents in attribute information 



field attribute certification in the letter. 

[Claim 1 1] It has a user device using contents, and the service provider which 
distributes the contents use authority certificate which stored purchase contents 
information to a user device. Said user device sends said contents use authority 
certificate to said service provider. Said service provider It is based on the contents 
information stored in the contents use authority certificate received from said user 
device. The contents use authority certificate corresponding to the contents 
belonging to the same album identified as the same set contents as this contents 
information is generated as an upgrade contents use authority certificate. The 
contents use authority administration system characterized by having the 
configuration which performs processing transmitted to a user device. 
[Claim 12] Said contents use authority certificate is a contents use authority 
administration system according to claim 1 1 characterized by being the configuration 
that the electronic signature of the issue entity of this contents use authority 
certificate was added, and said service provider being the configuration of performing 
the check of there being no data alteration of the generation processing of an upgrade 
contents use authority certificate based on reception of said contents use authority 
certificate by verification of said electronic signature as conditions. 
[Claim 13] Said contents use authority certificate is the contents use 
authority-administration system according to claim 1 1 which is the configuration of 
having stored the link information about the public key certificate corresponding to 
this contents use authority certificate, and is characterized by to be the configuration 
of performing the justification check of this contents use authority certificate as 
conditions by verification of the public key certificate with which said service provider 
is acquired by said link information in the generation processing of an upgrade 
contents use authority certificate based on reception of said contents use authority 
certificate. 

[Claim 14] It is the contents use authority administration approach in the system 
which has a user device using contents, and the service provider which distributes the 
contents use authority certificate which stored contents use condition information to 
a user device. Said user device Said contents use authority certificate is sent to said 
service provider. A modification processing demand of the contents use condition 
information stored in the contents use authority certificate is performed. Said service 
provider It responds to reception of said contents use authority certificate 
accompanied by a modification processing demand of the contents use condition 
information from said user device. The contents use authority administration 



approach characterized by performing processing which generates the upgrade 
contents use authority certificate which changed the contents use condition 
information recorded on the received contents use authority certificate, and is 
transmitted to a user device. 

[Claim 15] The encryption contents key which enciphered Kc is stored. A contents 
key for said contents use authority certificate to decode encryption contents : said 
user device It is contingent [ on the judgment of being contents use according to the 
contents use condition information stored in the contents use authority certificate 
received from said service provider ]. The contents use authority administration 
approach according to claim 14 characterized by performing decode of said 
encryption contents key and acquiring a contents key. 

[Claim 16] The encryption contents key which enciphered Kc is stored. A contents 
key for said contents use authority certificate to decode encryption contents : said 
user device On the occasion of contents use, judgment processing of whether to be 
contents use according to the contents use condition information stored in the 
contents use authority certificate received from said service provider is performed. It 
is contingent [ on the judgment according to contents use conditions that it was 
contents use having been obtained based on the judgment result ]. The contents use 
authority administration approach according to claim 14 characterized by performing 
decryption processing of the encryption contents key stored in said contents use 
authority certificate based on the key stored in the user device. 
[Claim 17] The encryption contents key which enciphered Kc is stored. A contents 
key for said contents use authority certificate to decode encryption contents : said 
service provider On the occasion of the contents use in a user device, a sent 
contents use authority certificate is received from this user device. Judgment 
processing of whether to be contents use according to the contents use condition 
information stored in the received contents use authority certificate is performed. It is 
contingent [ on the judgment according to contents use conditions that it was 
contents use having been obtained based on the judgment result ]. The contents use 
authority administration approach according to claim 14 characterized by performing 
decryption processing of the encryption contents key stored in said contents use 
authority certificate based on a service provider proper key. 
[Claim 18] The contents use condition information stored in said contents use 
authority certificate Contents buying up which does not prepare contents use time 
limitation information, the count limit information of contents use, and a use limit is 
either [ like ] 3 voice. A modification processing demand of the use condition 



information on the contents from said user device Modification of contents use time 
limitation, or modification of the count limit of contents use, Either is included even if 
there are little use time limitation, count limit of use, and modification between 3 
modes of buying up. Or said service provider According to reception of said contents 
use authority certificate accompanied by a modification processing demand of the use 
condition information on the contents from said user device, as modification 
processing of the contents use condition information recorded on the received 
contents use authority certificate Modification of contents use time limitation, or 
modification of the count limit of contents use, Or even if there are little use time 
limitation, count limit of use, and modification between 3 modes of buying up, perform 
either and an upgrade contents use authority certificate is generated. The contents 
use authority administration approach according to claim 14 characterized by 
performing processing transmitted to a user device. 

[Claim 19] The online use processing which makes an indispensable condition use 
authority judging processing in a service provider at the contents use conditions 
stored in said contents use authority certificate, The use condition information that 
either of the off-line use processings which make unnecessary use authority judging 
processing in a service provider was set up is included. Or said service provider 
According to reception of said contents use authority certificate accompanied by a 
modification processing demand of the use condition information on the contents from 
said user device, as modification processing of the contents use condition information 
recorded on the received contents use authority certificate The contents use 
authority administration approach according to claim 14 characterized by performing 
use condition change information between online use processing and off-line use 
processing, and performing processing which generates an upgrade contents use 
authority certificate and is transmitted to a user device. 

[Claim 20] Said contents use authority certificate is the contents use authority 
administration approach according to claim 14 characterized by being the 
configuration that the electronic signature of the issue entity of this contents use 
authority certificate was added, and said service provider performing the check of 
there being no data alteration of the generation processing of an upgrade contents 
use authority certificate based on reception of said contents use authority certificate 
by verification of said electronic signature as conditions. 
[Claim 21] Said contents use authority certificate is the contents use 
authority-administration approach according to claim 14 characterized by to perform 
the justification check of this contents use authority certificate as conditions by 



verification of the public key certificate acquired by said link information in the 
generation processing of an upgrade contents use authority certificate based on [ are 
the configuration of having stored the link information about the public key certificate 
corresponding to this contents use authority certificate, and ] reception of said 
contents use authority certificate in said service provider. 

[Claim 22] It is the contents use authority administration approach in the system 
which has a user device using contents, and the service provider which distributes the 
contents use authority certificate which stored purchase contents information to a 
user device. Said user device Said contents use authority certificate is sent to said 
service provider. Said service provider It is based on the contents information stored 
in the contents use authority certificate received from said user device. The contents 
use authority certificate corresponding to the contents belonging to the same album 
identified as the same set contents as this contents information is generated as an 
upgrade contents use authority certificate. The contents use authority administration 
approach characterized by performing processing transmitted to a user device. 
[Claim 23] Said contents use authority certificate is the contents use authority 
administration approach according to claim 22 characterized by being the 
configuration that the electronic signature of the issue entity of this contents use 
authority certificate was added, and said service provider performing the check of 
there being no data alteration of the generation processing of an upgrade contents 
use authority certificate based on reception of said contents use authority certificate 
by verification of said electronic signature as conditions. 
[Claim 24] Said contents use authority certificate is the contents use 
authority-administration approach according to claim 22 characterized by ****** 
which performs the justification check of this contents use authority certificate as 
conditions by verification of the public key certificate acquired by said link information 
in the generation processing of an upgrade contents use authority certificate based 
on [ are the configuration of having stored the link information about the public key 
certificate corresponding to this contents use authority certificate, and ] reception of 
said contents use authority certificate in said service provider. 
[Claim 25] In the system which has a user device using contents, and the service 
provider which distributes the contents use authority certificate which stored 
contents use condition information to a user device Are the information processor 
which publishes a contents use authority certificate, and the contents use condition 
modification processing demand accompanied by contents use condition information 
[ finishing / issue ] is received from a user device. Verification processing of the 



received contents use authority certificate is performed, and it is contingent [ on the 
justification of said contents use authority certificate having been checked by this 
verification ]. The information processor characterized by having the configuration 
which performs processing which generates the upgrade contents use authority 
certificate which changed the contents use condition information recorded on the 
received contents use authority certificate, and is transmitted to a user device. 
[Claim 26] Said information processor responds to reception of said contents use 
authority certificate accompanied by a modification processing demand of the use 
condition information on the contents from said user device. As modification 
processing of the contents use condition information recorded on the received 
contents use authority certificate Modification of contents use time limitation, or 
modification of the count limit of contents use, Or even if there are little use time 
limitation, count limit of use, and modification between 3 modes of buying up, perform 
either and an upgrade contents use authority certificate is generated. The information 
processor according to claim 25 characterized by having the configuration which 
performs processing transmitted to a user device. 

[Claim 27] The online use processing which makes an indispensable condition use 
authority judging processing in a service provider at the contents use conditions 
stored in said contents use authority certificate, The use condition information that 
either of the off-line use processings which make unnecessary use authority judging 
processing in a service provider was set up is included. Or said information processor 
According to reception of said contents use authority certificate accompanied by a 
modification processing demand of the use condition information on the contents from 
said user device, as modification processing of the contents use condition information 
recorded on the received contents use authority certificate The information 
processor according to claim 25 characterized by having the configuration which 
performs use condition change information between online use processing and off-line 
use processing, and performs processing which generates an upgrade contents use 
authority certificate and is transmitted to a user device. 

[Claim 28] Said contents use authority certificate is an information processor 
according to claim 25 characterized by being the configuration that the electronic 
signature of the issue entity of this contents use authority certificate was added, and 
said information processor being the configuration of performing the check of there 
being no data alteration of the generation processing of an upgrade contents use 
authority certificate based on reception of said contents use authority certificate by 
verification of said electronic signature as conditions. 



[Claim 29] Said contents use authority certificate is the information processor 
according to claim 25 which is the configuration of having stored the link information 
about the public key certificate corresponding to this contents use authority 
certificate, and is characterized by to be the configuration of performing the 
justification check of this contents use authority certificate as conditions by 
verification of the public key certificate with which said information processor is 
acquired by said link information in the generation processing of an upgrade contents 
use authority certificate based on reception of said contents use authority certificate. 
[Claim 30] In the system which has a user device using contents, and the service 
provider which distributes the contents use authority certificate which stored 
contents use condition information to a user device The step which is the computer 
program which makes issue processing of a contents use authority certificate perform 
on computer system, and receives the contents use condition modification processing 
demand accompanied by contents use condition information [ finishing / issue ], The 
step which performs verification processing of the received contents use authority 
certificate, It is contingent [ on the justification of said contents use authority 
certificate having been checked by this verification ]. The computer program 
characterized by having the step which generates the upgrade contents use authority 
certificate which changed the contents use condition information recorded on the 
received contents use authority certificate, and is transmitted to a user device. 
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DETAILED DESCRIPTION 



[Detailed Description of the Invention] 
[0001] 

[Field of the Invention] This invention relates to a contents use authority 
administration system, the contents use authority administration approach and an 
information processor, and a list at a computer program. By delivery of the contents 
key which used a contents use authority certificate including the use authority 
information on contents etc., for example, an attribute certificate, in the system which 
distributes the contents enciphered especially While preventing unjust use of 
contents, based on a contents use authority certificate, the contents use authority 
certificate corresponding to new use conditions or new contents is published. It is 
related with the contents use authority administration system which enabled new 
contents use, the contents use authority administration approach and an information 
processor, and a list at a computer program. 
[0002] 

[Description of the Prior Art] The service which distributes various software data 
(these are hereafter called contents (Content)), such as music data, image data, and a 
game program, through the various communication networks of a cable besides the 
communication link through the Internet and a satellite and wireless prospers these 
days. Moreover, the contents circulation through the storage of DVD, CD, a memory 
card, etc. which can be circulated also prospers. These circulation contents are set 
and used [ reproduce and ] for TV and PC (Personal Computer) which a user owns, 
the vessel only for playbacks, or a game device. 

[0003] It is received by the set top box which has communication facility, and it is 
changed into refreshable data, and is reproduced, or the contents distributed through 
a communication network are received and reproduced by information machines and 
equipment, such as TV equipped with the communication interface in the regenerative 
apparatus besides TV, a regenerative apparatus, a game device, and PC. 
[0004] Generally as for many software contents, such as a game program, music data, 
and image data, the right of distribution etc. is held by the implementer and the vender. 
Therefore, it is common to permit use of software, and for reproduction without 
authorization etc. to be made not to be performed, namely, to take the configuration in 
consideration of security only to a fixed use limit, i.e., a regular user, on the occasion 
of distribution of these contents. 

[0005] One technique of realizing the use limit to a user is encryption processing of 
distribution contents. For example, when storing and distributing the contents as 



which protection of copyrights is requested to media, such as distribution through 
satellite communication or the Internet communication link, or DVD, contents are 
enciphered, and it distributes or stores, and an available decode key is distributed to 
contents decode only to a registered user. A registered user is a configuration which 
performs decode of encryption contents and reproduces contents with the distributed 
decode key. 

[0006] Encryption data can be returned to decode data (plaintext) by decryption 
processing which used the decode key. The data encryption and the decryption 
approach of using an encryption key for data encryption processing, and using a 
decryption key for decryption processing are well learned from the former. 
[0007] Although it is seeds, there are various methods currently called the so-called 
common key encryptosystem-ized method as the one example in the mode of the 
data encryption and the decryption approach using an encryption key and a 
decryption key. A common key encryptosystem-ized method gives the encryption key 
used for data encryption processing, and the common key which uses for these 
encryption processing and a decryption the decryption key used for a decryption of 
data as a common thing at the user of normal, and eliminates the data access by the 
inaccurate user without a key. DES (data code criterion: Data encryption standard) is 
in the typical method of this method. 

[0008] On the other hand, for example based on a certain password etc., a Hash 
Function etc. can obtain the encryption key and decryption key which are used for 
above-mentioned encryption processing and a decryption with the application of a 
tropism function. On the other hand with a tropism function, the function which 
becomes very difficult asks for an input conversely from the output. For example, on 
the other hand, a tropism function is applied by considering the password which the 
user decided as an input, and an encryption key and a decryption key are generated 
based on the output. Thus, the parenchyma top of asking for the password which is 
the original data conversely from the obtained encryption key and a decryption key 
becomes impossible. 

[0009] Moreover, the method which performs processing with the encryption key used 
when enciphering, and processing of the decryption key used when decoding with a 
different key is a method called the so-called public key cryptosystem. An unspecified 
user is the approach of using an usable public key, and a public key cryptosystem 
performs encryption processing using the public key with which the specific individual 
generated the encryption document to a specific individual. The decryption processing 
of the document enciphered with the public key is attained only with the private key 



corresponding to the public key used for the encryption processing. Since only the 
individual who generated the public key owns a private key, only an individual with a 
private key can decode the document enciphered with the public key. An elliptic curve 
cryptosystem or a RSA (Rivest-Shamir-Adleman) code is one of the typical things of 
a public key cryptosystem. By using such a cipher system, the system which enables 
the decode of encryption contents only to a registered user becomes possible. 
[0010] 

[Problem(s) to be Solved by the Invention] In the above contents use managerial 
systems, many configurations which encipher contents, store in record media, such as 
a network, or DVD, CD, provide for a user, and provide only a valid user with the 
contents key which decodes encryption contents are adopted. The contents key for 
preventing unjust use of the contents key itself etc. is enciphered, it provides for a 
valid user, and the configuration which decodes an encryption contents key using the 
decode key which only a valid user has, and makes a contents key usable is proposed. 
[001 1] The judgment of whether to be a valid user is performed by generally 
performing authentication processing before distribution of contents or a contents 
key between user devices with the content provider who is the transmitting person of 
contents. In general authentication processing, while checking a partner, when an 
effective session key is generated only by the communication link and authentication 
is materialized, it communicates by enciphering data, for example, contents, or a 
contents key using the generated session key. 

[0012] However, in the configuration which performs an user validation by using such 
authentication processing as the base, and distributes contents or a contents key, it 
is necessary to manage the contents use authority information for every user by the 
side which distributes a contents key. That is, in order that a user may judge whether 
it has just contents use authority, all users' contents use authority information is 
stored in a database, and the processing which performs distribution of contents or a 
contents key is needed based on authority information. 

[0013] When the number of users becomes huge, a processing load becomes large and 
it makes the effectiveness of distribution of contents, or the message distribution 
processing of a contents key fall, although it is satisfactory at all if such processing, 
i.e., check processing of a user's contents use authority, is the fraction of the range 
where the number of users using contents was restricted. Moreover, the case where 
he wants to change conditions set up as use conditions for contents for some users, 
such as time limitation and a count limit, after the purchase of contents may occur. 
[0014] This invention is made in view of an above-mentioned trouble. A user's 



contents use authority Contents use is enabled only in a valid user, without managing 
for every user by the service provider side. Furthermore, modification processing of 
various use limits corresponding to a user, such as time limitation and a count limit, Or 
it aims at providing with a computer program the contents use authority 
administration system which made it possible to perform the purchase of new 
contents based on the information corresponding to contents [ finishing / purchase ], 
the contents use authority administration approach and an information processor, and 
a list. 
[0015] 

[Means for Solving the Problem] The user device with which the 1st side face of this 
invention uses contents, It has the service provider which distributes the contents 
use authority certificate which stored contents use condition information to a user 
device. Said user device While having the configuration which performs contents use 
according to the contents use condition information stored in the contents use 
authority certificate received from said service provider Said contents use authority 
certificate is sent to said service provider. It has the configuration which performs a 
modification processing demand of the contents use condition information stored in 
the contents use authority certificate. Said service provider It responds to reception 
of said contents use authority certificate accompanied by a modification processing 
demand of the contents use condition information from said user device. The upgrade 
contents use authority certificate which changed the contents use condition 
information recorded on the received contents use authority certificate is generated, 
and it is in the contents use authority administration system characterized by having 
the configuration which performs processing transmitted to a user device. 
[0016] The contents use authority administration system of this invention sets like 1 
operative condition. Furthermore, said contents use authority certificate The 
encryption contents key which enciphered Kc is stored. The contents key for 
decoding encryption contents : said user device It is characterized by being the 
configuration which performs decode of said encryption contents key a condition [the 
judgment of being contents use according to the contents use condition information 
stored in the contents use authority certificate received from said service provider ], 
and acquires a contents key. 

[0017] The contents use authority administration system of this invention sets like 1 
operative condition. Furthermore, said contents use authority certificate The 
encryption contents key which enciphered Kc is stored. The contents key for 
decoding encryption contents : said user device On the occasion of contents use, 



judgment processing of whether to be contents use according to the contents use 
condition information stored in the contents use authority certificate received from 
said service provider is performed. It is contingent [ on the judgment according to 
contents use conditions that it was contents use having been obtained based on the 
judgment result ]. It is characterized by having the configuration which performs 
decryption processing of the encryption contents key stored in said contents use 
authority certificate based on the key stored in the user device. 
[0018] The contents use authority administration system of this invention sets like 1 
operative condition. Furthermore, said contents use authority certificate The 
encryption contents key which enciphered Kc is stored. The contents key for 
decoding encryption contents : said service provider On the occasion of the contents 
use in a user device, a sent contents use authority certificate is received from this 
user device. Judgment processing of whether to be contents use according to the 
contents use condition information stored in the received contents use authority 
certificate is performed. It is contingent [ on the judgment according to contents use 
conditions that it was contents use having been obtained based on the judgment 
result ]. It is characterized by having the configuration which performs decryption 
processing of the encryption contents key stored in said contents use authority 
certificate based on a service provider proper key. 

[0019] Furthermore, the contents use condition information which the contents use 
authority administration system of this invention set like 1 operative condition, and 
was stored in said contents use authority certificate Contents buying up which does 
not prepare contents use time limitation information, the count limit information of 
contents use, and a use limit is either [ like ] 3 voice. A modification processing 
demand of the use condition information on the contents from said user device 
Modification of contents use time limitation, or modification of the count limit of 
contents use, Either is included even if there are little use time limitation, count limit 
of use, and modification between 3 modes of buying up. Or said service provider 
According to reception of said contents use authority certificate accompanied by a 
modification processing demand of the use condition information on the contents from 
said user device, as modification processing of the contents use condition information 
recorded on the received contents use authority certificate Modification of contents 
use time limitation, or modification of the count limit of contents use, Or it is 
characterized by having use time limitation, the count limit of use, and the 
configuration that performs processing of modification between 3 modes of buying up 
which performs either at least, generates an upgrade contents use authority 



certificate, and is transmitted to a user device. 

[0020] furthermore, on the contents use conditions which the contents use authority 
administration system of this invention set like 1 operative condition, and were stored 
in said contents use authority certificate The online use processing which makes an 
indispensable condition use authority judging processing in a service provider, The use 
condition information that either of the off-line use processings which make 
unnecessary use authority judging processing in a service provider was set up is 
included. Or said service provider According to reception of said contents use 
authority certificate accompanied by a modification processing demand of the use 
condition information on the contents from said user device, as modification 
processing of the contents use condition information recorded on the received 
contents use authority certificate It is characterized by having the configuration 
which performs use condition change information between online use processing and 
off-line use processing, and performs processing which generates an upgrade 
contents use authority certificate and is transmitted to a user device. 
[0021] Furthermore, the contents use authority-administration system of this 
invention sets like 1 operative condition, said contents use authority certificate is the 
configuration that the electronic signature of the issue entity of this contents use 
authority certificate was added, and said service provider carries out that it is the 
configuration of performing the check of there being no data alteration of the 
generation processing of an upgrade contents use authority certificate based on 
reception of said contents use authority certificate by verification of said electronic 
signature as conditions as the description. 

[0022] The contents use authority administration system of this invention sets like 1 
operative condition. Furthermore, said contents use authority certificate It is the 
configuration of having stored the link information about the public key certificate 
corresponding to this contents use authority certificate. Said service provider It is 
characterized by being the configuration of performing the justification check of this 
contents use authority certificate as conditions by verification of the public key 
certificate acquired by said link information in the generation processing of an upgrade 
contents use authority certificate based on reception of said contents use authority 
certificate. 

[0023] Furthermore, the contents use authority administration system of this 
invention sets like 1 operative condition, and said contents use authority certificate is 
an attribute certificate which an attribute certificate certificate authority publishes, 
and is characterized by being the configuration of having stored in attribute 



information field attribute certification in the letter the encryption contents key which 
enciphered the contents key applied to decode of contents. 
[0024] Furthermore, the contents use authority administration system of this 
invention sets like 1 operative condition, and said contents use authority certificate is 
an attribute certificate which an attribute certificate certificate authority publishes, 
and is characterized by being the configuration of having stored the use conditions of 
contents in attribute information field attribute certification in the letter. 
[0025] Furthermore, the user device with which the 2nd side face of this invention 
uses contents, It has the service provider which distributes the contents use 
authority certificate which stored purchase contents information to a user device. 
Said user device Said contents use authority certificate is sent to said service 
provider. Said service provider It is based on the contents information stored in the 
contents use authority certificate received from said user device. The contents use 
authority certificate corresponding to the contents belonging to the same album 
identified as the same set contents as this contents information is generated as an 
upgrade contents use authority certificate. It is in the contents use authority 
administration system characterized by having the configuration which performs 
processing transmitted to a user device. 

[0026] Furthermore, the contents use authority-administration system of this 
invention sets like 1 operative condition, said contents use authority certificate is the 
configuration that the electronic signature of the issue entity of this contents use 
authority certificate was added, and said service provider carries out that it is the 
configuration of performing the check of there being no data alteration of the 
generation processing of an upgrade contents use authority certificate based on 
reception of said contents use authority certificate by verification of said electronic 
signature as conditions as the description. 

[0027] The contents use authority administration system of this invention sets like 1 
operative condition. Furthermore, said contents use authority certificate It is the 
configuration of having stored the link information about the public key certificate 
corresponding to this contents use authority certificate. Said service provider It is 
characterized by being the configuration of performing the justification check of this 
contents use authority certificate as conditions by verification of the public key 
certificate acquired by said link information in the generation processing of an upgrade 
contents use authority certificate based on reception of said contents use authority 
certificate. 

[0028] Furthermore, the user device with which the 3rd side face of this invention 



uses contents, It is the contents use authority administration approach in the system 
which has the service provider which distributes the contents use authority 
certificate which stored contents use condition information to a user device. Said 
user device sends said contents use authority certificate to said service provider. A 
modification processing demand of the contents use condition information stored in 
the contents use authority certificate is performed. Said service provider It responds 
to reception of said contents use authority certificate accompanied by a modification 
processing demand of the contents use condition information from said user device. 
The upgrade contents use authority certificate which changed the contents use 
condition information recorded on the received contents use authority certificate is 
generated, and it is in the contents use authority administration approach 
characterized by performing processing transmitted to a user device. 
[0029] The contents use authority administration approach of this invention sets like 
1 operative condition. Furthermore, said contents use authority certificate The 
encryption contents key which enciphered Kc is stored. The contents key for 
decoding encryption contents : said user device It is characterized by performing 
decode of said encryption contents key a condition [ the judgment of being contents 
use according to the contents use condition information stored in the contents use 
authority certificate received from said service provider ], and acquiring a contents 
key. 

[0030] The contents use authority administration approach of this invention sets like 
1 operative condition. Furthermore, said contents use authority certificate The 
encryption contents key which enciphered Kc is stored. The contents key for 
decoding encryption contents : said user device On the occasion of contents use, 
judgment processing of whether to be contents use according to the contents use 
condition information stored in the contents use authority certificate received from 
said service provider is performed. It is characterized by performing decryption 
processing of the encryption contents key stored in said contents use authority 
certificate based on the key stored in the user device the condition [ the judgment 
according to contents use conditions that it was contents use having been obtained 
based on the judgment result ]. 

[0031] The contents use authority administration approach of this invention sets like 
1 operative condition. Furthermore, said contents use authority certificate The 
encryption contents key which enciphered Kc is stored. The contents key for 
decoding encryption contents : said service provider On the occasion of the contents 
use in a user device, a sent contents use authority certificate is received from this 



user device. Judgment processing of whether to be contents use according to the 
contents use condition information stored in the received contents use authority 
certificate is performed. It is characterized by performing decryption processing of the 
encryption contents key stored in said contents use authority certificate based on the 
service provider proper key the condition [ the judgment according to contents use 
conditions that it was contents use having been obtained based on the judgment 
result ]. 

[0032] Furthermore, the contents use condition information which the contents use 
authority administration approach of this invention set like 1 operative condition, and 
was stored in said contents use authority certificate Contents buying up which does 
not prepare contents use time limitation information, the count limit information of 
contents use, and a use limit is either [ like ] 3 voice. A modification processing 
demand of the use condition information on the contents from said user device 
Modification of contents use time limitation, or modification of the count limit of 
contents use, Either is included even if there are little use time limitation, count limit 
of use, and modification between 3 modes of buying up. Or said service provider 
According to reception of said contents use authority certificate accompanied by a 
modification processing demand of the use condition information on the contents from 
said user device, as modification processing of the contents use condition information 
recorded on the received contents use authority certificate Modification of contents 
use time limitation, or modification of the count limit of contents use, Or it is 
characterized by performing processing of use time limitation, the count limit of use, 
and modification between 3 modes of buying up which performs either at least, 
generates an upgrade contents use authority certificate, and is transmitted to a user 
device. 

[0033] furthermore, on the contents use conditions which the contents use authority 
administration approach of this invention set like 1 operative condition, and were 
stored in said contents use authority certificate The online use processing which 
makes an indispensable condition use authority judging processing in a service 
provider, The use condition information that either of the off-line use processings 
which make unnecessary use authority judging processing in a service provider was 
set up is included. Or said service provider According to reception of said contents 
use authority certificate accompanied by a modification processing demand of the use 
condition information on the contents from said user device, as modification 
processing of the contents use condition information recorded on the received 
contents use authority certificate It is characterized by performing use condition 



change information between online use processing and off-line use processing, and 
performing processing which generates an upgrade contents use authority certificate 
and is transmitted to a user device. 

[0034] Furthermore, the contents use authority administration approach of this 
invention sets like 1 operative condition, said contents use authority certificate is the 
configuration that the electronic signature of the issue entity of this contents use 
authority certificate was added, and said service provider is characterized by to 
perform the check of there being no data alteration of the generation processing of an 
upgrade contents use authority certificate based on reception of said contents use 
authority certificate by verification of said electronic signature as conditions. 
[0035] The contents use authority administration approach of this invention sets like 
1 operative condition. Furthermore, said contents use authority certificate It is the 
configuration of having stored the link information about the public key certificate 
corresponding to this contents use authority certificate. Said service provider It is 
characterized by performing the justification check of this contents use authority 
certificate as conditions by verification of the public key certificate acquired by said 
link information in the generation processing of an upgrade contents use authority 
certificate based on reception of said contents use authority certificate. 
[0036] Furthermore, the user device with which the 4th side face of this invention 
uses contents, It is the contents use authority administration approach in the system 
which has the service provider which distributes the contents use authority 
certificate which stored purchase contents information to a user device. Said user 
device sends said contents use authority certificate to said service provider. Said 
service provider It is based on the contents information stored in the contents use 
authority certificate received from said user device. The contents use authority 
certificate corresponding to the contents belonging to the same album identified as 
the same set contents as this contents information is generated as an upgrade 
contents use authority certificate. It is in the contents use authority administration 
approach characterized by performing processing transmitted to a user device. 
[0037] Furthermore, the contents use authority administration approach of this 
invention sets like 1 operative condition, said contents use authority certificate is the 
configuration that the electronic signature of the issue entity of this contents use 
authority certificate was added, and said service provider is characterized by to 
perform the check of there being no data alteration of the generation processing of an 
upgrade contents use authority certificate based on reception of said contents use 
authority certificate by verification of said electronic signature as conditions. 



[0038] The contents use authority administration approach of this invention sets like 
1 operative condition. Furthermore, said contents use authority certificate It is the 
configuration of having stored the link information about the public key certificate 
corresponding to this contents use authority certificate. Said service provider It is 
characterized by ****** which performs the justification check of this contents use 
authority certificate as conditions by verification of the public key certificate acquired 
by said link information in the generation processing of an upgrade contents use 
authority certificate based on reception of said contents use authority certificate. 
[0039] Furthermore, the user device with which the 5th side face of this invention 
uses contents, In the system which has the service provider which distributes the 
contents use authority certificate which stored contents use condition information to 
a user device Are the information processor which publishes a contents use authority 
certificate, and the contents use condition modification processing demand 
accompanied by contents use condition information [ finishing / issue ] is received 
from a user device. Verification processing of the received contents use authority 
certificate is performed, and it is contingent [ on the justification of said contents use 
authority certificate having been checked by this verification ]. The upgrade contents 
use authority certificate which changed the contents use condition information 
recorded on the received contents use authority certificate is generated, and it is in 
the information processor characterized by having the configuration which performs 
processing transmitted to a user device. 

[0040] The information processor of this invention sets like 1 operative condition. 
Furthermore, said information processor According to reception of said contents use 
authority certificate accompanied by a modification processing demand of the use 
condition information on the contents from said user device, as modification 
processing of the contents use condition information recorded on the received 
contents use authority certificate Modification of contents use time limitation, or 
modification of the count limit of contents use, Or it is characterized by having use 
time limitation, the count limit of use, and the configuration that performs processing 
of modification between 3 modes of buying up which performs either at least, 
generates an upgrade contents use authority certificate, and is transmitted to a user 
device. 

[0041] furthermore, on the contents use conditions which the information processor 
of this invention set like 1 operative condition, and were stored in said contents use 
authority certificate The online use processing which makes an indispensable 
condition use authority judging processing in a service provider, The use condition 



information that either of the off-line use processings which make unnecessary use 
authority judging processing in a service provider was set up is included. Or said 
information processor According to reception of said contents use authority 
certificate accompanied by a modification processing demand of the use condition 
information on the contents from said user device, as modification processing of the 
contents use condition information recorded on the received contents use authority 
certificate It is characterized by having the configuration which performs use 
condition change information between online use processing and off-line use 
processing, and performs processing which generates an upgrade contents use 
authority certificate and is transmitted to a user device. 

[0042] Furthermore, the information processor of this invention sets like 1 operative 
condition, said contents use authority certificate is the configuration that the 
electronic signature of the issue entity of this contents use authority certificate was 
added, and said information processor carries out that it is the configuration of 
performing the check of there being no data alteration of the generation processing of 
an upgrade contents use authority certificate based on reception of said contents use 
authority certificate by verification of said electronic signature as conditions as the 
description. 

[0043] The information processor of this invention sets like 1 operative condition. 
Furthermore, said contents use authority certificate It is the configuration of having 
stored the link information about the public key certificate corresponding to this 
contents use authority certificate. Said information processor It is characterized by 
being the configuration of performing the justification check of this contents use 
authority certificate as conditions by verification of the public key certificate acquired 
by said link information in the generation processing of an upgrade contents use 
authority certificate based on reception of said contents use authority certificate. 
[0044] Furthermore, the user device with which the 6th side face of this invention 
uses contents, In the system which has the service provider which distributes the 
contents use authority certificate which stored contents use condition information to 
a user device The step which is the computer program which makes issue processing 
of a contents use authority certificate perform on computer system, and receives the 
contents use condition modification processing demand accompanied by contents use 
condition information [ finishing / issue ], The step which performs verification 
processing of the received contents use authority certificate, It is contingent [ on the 
justification of said contents use authority certificate having been checked by this 
verification ]. The upgrade contents use authority certificate which changed the 



contents use condition information recorded on the received contents use authority 
certificate is generated, and it is in the computer program characterized by having the 
step transmitted to a user device. 

[0045] In addition, the computer program of this invention is a computer program 
which can be offered to the computer system which can perform various program 
codes, for example by communication media, such as record media, such as a storage 
offered in a computer-readable format, communication media, for example, CD, and 
FD, MO, or a network. By offering such a program in a computer-readable format, 
processing according to a program is realized on computer system. 
[0046] The purpose, the description, and advantage of further others of this invention 
will become [ rather than ] clear by detailed explanation based on the example and the 
drawing to attach of this invention mentioned later. In addition, in this specification, a 
system is the logical set configuration of two or more equipments, and it does not 
restrict to what has equipment of each configuration in the same case. 
[0047] 

[Embodiment of the Invention] Drawing which explains each entity in the contents use 
managerial system of this invention and the outline of processing of each entity to 
[system outline] drawing 1 is shown. 

[0048] The user device 101 is the terminal of each user using contents, and, 
specifically, are regenerative apparatus, such as PC, a game terminal, and DVD, CD, a 
record regenerative apparatus, etc. These terminals are equipped with the security 
chip of the Tampa-proof configuration equipped with the control means which 
controls cipher processing explained in the latter part, and contents use processing. 
The service provider (SP-CD) 102 as a contents distribution entity (contents 
distributor), other entities, and many of processings that the user device 101 side in 
the data transfer performed between the user devices 101 is secure are controlled 
and performed within a security chip. 

[0049] A service provider (contents distributor) (SP-CD) 102 is a service provider 
which offers contents to the user device 101 with a security chip. The contents 
creator 103 offers the contents for presenting service to a service provider (contents 
distributor) (SP-CD) 102. The user device manufacturer (Manufacturer) 104 is an 
entity which manufactures the user device 101. 

[0050] A support center 105 is a center which performs the support to various 
processings with the user device with which the user device 101 was equipped, for 
example, performs various support processings to a user device, such as recovery 
processing of the password in the case of having forgotten the password which a user 



uses as authentication information, or restoration (restoration) processing using the 
backup data of the contents which the user device generated. A certificate authority 
(CA:Certification Authority) 106 publishes a public key certificate (PKC:Public Key 
Certificate) to each entity. 

[0051] In addition, the user device 101, a service provider (contents distributor) 
(SP-CD) 102, the contents creator 103, the user device manufacturer (Manufacturer) 
104, a support center 105, a certificate authority (CA:Certification Authority) 106, and 
the number of each entities are arbitrary. Especially, although one certificate authority 
(CA:Certification Authority) 106 is shown in drawing 1 , two or more certificate 
authorities which publish the public key certificate for which a certificate authority is 
needed according to processing by each entity may exist. 

[0052] In addition to this, the user device 101 receives satellite communication, the 
Internet communication link, or the contents enciphered from the service provider 
(contents distributor) 102 through the data communication network of a cable and 
w j re |ess, and uses contents, key [ for decoding encryption contents ]: — contents 
key: — the contents use authority certificate as an authority information certificate in 
which Kc is enciphered and contents use authority is shown — for example, in order 
to be stored in the attribute certificate (AC:Attribute Certificate) 110 and for a user 
terminal 101 to decode and use contents The attribute certificate (AC:Attribute 
Certificate) 1 10 is received from a service provider (contents distributor) 102, and it is 
necessary to take out and decode a key from an attribute certificate in a user device 
with a security chip. 

[0053] the contents use authority certificate (AC:Attribute Certificate) 110, for 
example, the attribute certificate, as an authority information certificate in which 
contents use authority is shown The use limit information on contents, such as a 
count of a use limit, a use term, etc. of contents, other than Kc is recorded. The 
enciphered contents key : the user device 101 Use of the contents according to the 
contents use limit recorded on the attribute certificate (AC) 110 as a contents use 
authority certificate is attained. 

[0054] In addition, hereafter, although explained as a configuration which stored the 
use information on contents, and an encryption contents key in the attribute 
certificate (AC:Attribute Certificate) 110, the certificate which stored the use 
information on contents and an encryption contents key can consist of explanation of 
an example as a certificate of the data format of not only an attribute certificate (AC) 
but the arbitration according to the so-called convention. That is, if it is the 
configuration that stored the data proving the use authority of contents and the 



signature data of the issue entity for data alteration verification were added, the 
contents use authority certificate of the data format of arbitration is available. 
[0055] In addition, as a distribution gestalt of the contents distribution to the user 
device from a service provider, or an attribute certificate (AC:Attribute Certificate), 
any gestalt of the gestalt performed based on the demand to the service provider 
from a user side and the gestalt (push type model) of the so-called push type which 
transmits to a target from a service provider on the other hand to the user who has 
made the subscriber contract regardless of the existence of a demand of a user is 
possible. 

[0056] Among each entity shown by drawing 1 , the entity of entities 101 other than 
certificate authority 106, i.e., a user device, a service provider (contents distributor) 
(SP-CD) 102, the contents creator 103 and the user device manufacturer 
(Manufacturer) 104, and a support center 105 performs processing by each entity 
according to the predetermined Ruhr in order to enable contents use and contents 
distribution according to the predetermined Ruhr. This Ruhr is set up and there is a 
system holder (SH:System Holder) which is not illustrated as an entity to manage. 
Each entity of 101-105 of drawing 1 performs processing by each entity under the 
contents use infrastructure which the system holder (SH) set up, and the Ruhr. 
[0057] For example, the user device manufacturer (Manufacturer) 104 stores the 
device identifier (ID) applied in contents distribution in a security chip with the 
Tampa-proof configuration in the user device to manufacture, and various kinds of 
cipher-processing keys. In the contents transfer between the user device 101, a 
service provider (contents distributor) 102, the contents creator (CO 103, and a 
support center 105, a transfer of an attribute certificate, and other data transfer 
processings, mutual recognition processing and data encryption processing are 
performed based on the Ruhr which the system holder (SH) set up. 
[0058] Moreover, on the occasion of the contents use in the user device 101, 
contents use which observed the use limit recorded on the attribute certificate is 
performed. For example, processing which updates the counter which carries out the 
multiplier of the count of contents available to the bottom of control of the control 
section of the security chip in a device on the occasion of use of the contents to 
which the count limit was set is performed. The entity which builds and manages the 
platform which specified the Ruhr of processing by such each entity is a system 
holder (SH). 

[0059] The outline is explained about the public key certificate and attribute 
certificate which are used in the configuration of [public key certificate and attribute 



certificate] drawing 1 . 

[0060] (Public key certificate (PKC)) A public key certificate is explained using 
drawing 2 , drawing 3 , and drawing 4 . A public key certificate is a certificate which a 
certificate authority (CA:Certification Authority) publishes, and when a user and each 
entity submit self ID, a public key, etc. to a certificate authority, it is a certificate with 
which a certificate authority side adds information, such as ID of a certificate 
authority, and an expiration date, adds the signature by the certificate authority 
further, and is created. 

[0061] The example of a format of a public key certificate is shown in drawing 2 - 
drawing 4 . This is public key certificate format ITU-T. It is an example based on X.509. 
[0062] A version (version) shows the version of a certificate format. A serial number 
(Serial Number) is a serial number of the public key certificate set up by the public key 
certificate issue station (CA). A signature (Signature) is the signature algorithm of a 
certificate. In addition, when there are an elliptic curve cryptosystem and RSA and the 
elliptic curve cryptosystem is applied as a signature algorithm, a parameter and key 
length are recorded, and key length is recorded when RSA is applied. A publisher 
(issuer) is the field where the publisher of a public key certificate, i.e., the name of a 
public key certificate issue office (IA), is recorded in an identifiable format 
(Distinguished Name). The initiation time and termination time whose expiration date 
(validity) is an expiration date of a certificate are recorded. As for subject public key 
information (subject Public Key Info), the algorithm of a key and a key are stored as a 
certificate owner's public key information. 

[0063] A certification office key identifier (authority Key Identifier-key Identifier, 
authority Cert Issuer, authority Cert Serial Number) is information which identifies a 
certificate publisher's key used for signature verification, and stores the name of a 
key identifier and an engine certificate publisher, and an engine certificate serial 
number. A subject key identifier (subject key Identifier) stores the identifier for 
identifying each key, when proving two or more keys in a public key certificate. The 
key purpose of use (key usage) is the field which specifies the purpose of using a key, 
and each purpose of use for the signature check of the object for (0) digital signatures, 
the object for (1) denial prevention, the object for encryption of (2) keys, the object 
for encryption of (3) messages, the object for (4) common key delivery, the object for 
the signature check of (5) authentications, and (6) lapse list is set up. A private key 
expiration date (private Key Usage Period) records the expiration date of the private 
key corresponding to the public key stored in the certificate. A certificate authority 
policy (certificate Policies) records a public key certificate publisher's certificate 



issue policy. For example, they are the policy ID based on ISO/IEC 9384-1, and 
authentication criteria. Policy mapping (policy Mapping) is the field which stores the 
information about limit of policy-related [ under authentication pass ], and is needed 
only for a certificate authority (CA) certificate. A subject alias name (subject Alt 
Name) is the field which records a certificate owner's alias name. A publisher alias 
name (issuer Alt Name) is the field which records a certificate publisher's alias name. 
A subject directory attribute (subject Directory Attribute) is the field which records 
the attribute of the directory needed for a certificate owner. Basic constraint (BASIC 
Constraint) is the field for the public key for certification to distinguish the object for 
the signature of a certificate authority (CA), and a certificate owner's thing. A 
permission subtree constraint name (name Constraints permitted Subtrees) is the 
field which stores the limit information on the identifier of the certificate which a 
publisher publishes. A constraint policy (policy Constraints) is the field which stores 
the limit information on the relation of the policy under authentication pass. The CRL 
reference point (Certificate Revocation List Distribution Points) is the field which 
describes the reference point of the lapse list of [ for checking whether the certificate 
is invalidated and how it is ], in case a certificate owner uses a certificate. A signature 
algorithm (Signature Algotithm) is the field which stores the algorithm used for 
signature attachment of a certificate. A signature is a public key certificate publisher's 
signature field. Electronic signature is data which generated the hash value with the 
application of the Hash Function to the whole certificate, and were generated using a 
publisher's private key to the hash value. Although the alteration is possible only by 
taking signature attachment and a hash, if detectable, there is effectiveness same 
with the ability not to alter substantially. 

[0064] a certificate authority updates the public key certificate with which the 
expiration date went out, and performs creation of the lapse list (Revocation List) of 
[ for excluding the user who performed injustice ], management, and distribution (this 
— RIBOKESHON: — referred to as Revocation) while it publishes the public key 
certificate shown in drawing 2 - drawing 4 . Moreover, generation of a public key and a 
private key is also performed if needed. 

[0065] On the other hand, in case this public key certificate is used, using the public 
key of the certificate authority which self holds, a user verifies the electronic 
signature of the public key certificate concerned, after he succeeds in verification of 
electronic signature, he picks out a public key from a public key certificate, and uses 
the public key concerned. Therefore, all the users using a public key certificate need 
to hold the public key of a common certificate authority. 



[0066] (Attribute certificate (AC)) An attribute certificate is explained using drawing 
5 . It roughly divides into an attribute certificate, there are two classes, and one is a 
certificate including the attribute information of the owner about the right and 
authority of the right of use of contents. Another is an attribute certificate for 
partitioning for (service providers SP), or deletion (AC), and is an attribute certificate 
(AC) including partitioning in the case of securing or deleting the information storing 
field for (service providers SP) in the memory in a user device, or the consent 
information on deletion. 

[0067] The attribute certificate format is prescribed by ITU-T X.509, and has decided 
upon Profile by IETF PKIX WG. Unlike a public key certificate, an owner's public key is 
not included. However, since the signature of an attribute certificate certificate 
authority (Attribute Certificate Authority) sticks, the point that the judgment of 
whether to be altered can be performed by verifying this signature is the same as that 
of a public key certificate. 

[0068] As for the attribute certificate certificate authority (Attribute Certificate 
Authority) which performs issue management of an attribute certificate (AC), in the 
configuration of this invention, it is possible for a service provider (contents 
distributor) (SP-CD) 102 to hold an additional post. It is good also as another 
configuration. An attribute certificate is always related with a public key certificate, 
and is used. That is, it is the attribute certificate which this human nature of an owner 
itself is checked with a public key certificate, and what kind of authority is granted to 
the owner on it, or shows a chisel. After performing signature verification of the 
certificate concerned in verification of an attribute certificate, verification of the 
public key certificate related with it is also performed. 

[0069] In addition, it is desirable in that case that follow a certificate chain in principle 
and even the top public key certificate verifies in order. Two or more certificate 
authorities (CA) exist, and the public key certificate of a certificate authority own 
[ low-ranking ] is signed with the certificate authority configuration which makes 
hierarchy organization by the high order certificate authority which publishes the 
public key certificate. That is, a chain of public key certificate issue configuration that 
the public key certificate issue station (CA-High) of a high order publishes a public 
key certificate to a lower layer public key certificate issue station (CA-Low) is taken. 
Chain verification of a public key certificate means following a certificate chain from 
low order to a high order, acquiring the chain information to the top public key 
certificate, and performing signature verification of the public key certificate to the 
most significant (root CA). 



[0070] By the shelf-life of an attribute certificate being a short period of time, it is 
also possible not to perform lapse processing. In this case, the lapse procedure of a 
certificate, the reference procedure of lapse information, etc. can be skipped, and 
there is the advantage from which a system becomes simple. However, since a certain 
cures other than a lapse are needed to unjust use of a certificate, it must fully be 
careful. In this authentication system, since it is the configuration which embeds the 
contents key for decoding the contents other than use authority to contents in the 
attribute certificate, the user device with just contents use authority is available in 
contents by receiving a just attribute certificate. 

[0071] The configuration of the attribute certificate shown in drawing 5 is explained. 
The version number of a certificate shows the version of a certificate format. AC 
holder's public key certificate information and this are the information about the public 
key certificate (PKC) corresponding to the publisher of an attribute certificate (AC), 
and are information, such as a PKC publisher name, a PKC serial number, and a PKC 
publisher proper identifier, and it has a function as link data which associate a 
correspondence public key certificate. The identifier of the publisher of an attribute 
certificate is the field where the publisher of an attribute certificate, i.e., the name of 
an attribute certificate certificate authority (AA), is recorded in an identifiable format 
(Distinguished Name). A signature algorithm identifier is the field which records the 
signature algorithm identifier of an attribute certificate. The initiation time and 
termination time whose expiration date of a certificate is an expiration date of a 
certificate are recorded. According to the use gestalt of an attribute certificate, as for 
attribute information field, either (1) memory area reservation, deletion information or 
(2) contents use condition related information is stored. The enciphered contents key 
is included in contents use condition related information. 

[0072] (1) Memory area reservation and deletion information are recorded on the 
attribute certificate with which a service provider is published for the purpose of a 
registration setup or deletion in the management domain for every service provider by 
the memory in the security chip of a user device. Recording information is the 
following information. 
Service provider identifier (ID) 

Service-provider name processing: Memory area reservation and memory area 
deletion are the size [0073] of an area-size:memory area either. A service provider 
sends the attribute certificate which stored each above-mentioned item in attribute 
information field to a user device, and a user device performs secured processing of a 
memory area in which record of the attribute information field of the attribute 



certificate received in the memory after verification of an attribute certificate and in 
the security chip of self was followed, or deletion of a memory area [ finishing / 
reservation ]. 

[0074] (2) Contents use condition related information is information stored in the 
attribute information field of the attribute certificate published corresponding to the 
contents which a service provider offers, and contains the encryption data of the 
contents key which enciphered contents further including various use conditions, 
such as a count of a use limit of contents, and a use term. Recording information is 
the following information. 
Service provider identifier (ID) 

Service-provider name application identifier (ID): It is the identification information of 
contents. 

Conditions: It is the information which shows [ online use contents, off-line use 
contents, and ] any of buying-up contents, time limitation contents, the count limit 
contents of online, and the count limit contents of off-line they are further, 
expiration date: — count [ in the case of time limitation ] of expiration date 
information use limit: — count payment condition [ in a count limit / of available ]: 
the payment condition of the countervalue of contents — record contents key: — the 
enciphered contents key — encryption algorithm information — storing [0075] There 
is each mode of the mode which buys up and carries out (a) contents like a publication 
in the above-mentioned condition field at the use mode of contents with distinction of 
(1) online use and (2) off-line use, and makes contents use after buying up free, the 
mode which prepared (b) time limitation and set up the use period of contents, and the 
mode which prepared the count limit of '(c), and restricted the count of use of 
contents. Moreover, there is also a combination limit mode accompanied by both limits 
of time limitation and a count limit. In a user device, use of contents is performed 
according to these modes recorded on the attribute certificate. The latter part 
explains these concrete processing modes. 

[0076] Moreover, the contents key applied as a decode key of encryption contents: 
The encryption contents key which enciphered Kc is stored. Contents key: The main 
classes of key applied to encryption processing of Kc directly or indirectly are as 
being shown below. 

(a) Storage public key:SC.Stopub.SP.K corresponding to the (service provider SP) 
corresponding to the storage private key corresponding to SP stored in each service 
provider management domain of the security chip of a user device (public key system), 

(b) The storage key corresponding to SP stored in each service provider management 



domain of the security chip of a user device (common key system) 

(c) private key: which a service provider holds — global common key:kg generated as 

a key shared between an SP.Sto.K(d) system holder (SH) and a user device — the 

latter part explains the processing which applied these keys to a detail. 

[0077] Further, a signature algorithm is recorded on an attribute certificate and a 

signature is performed to it by the attribute certificate certificate authority (AA) 

which is an attribute certificate publisher. Electronic signature is data which 

generated the hash value with the application of the Hash Function to the whole 

attribute certificate, and were generated using an attribute certificate publisher's 

(AA)'s private key to the hash value. 

[0078] [Security chip configuration] The. configuration of the security chip constituted 
in the user device as an information processor which uses contents next is explained 
referring to drawing 6 . In addition, a user device will be constituted by regenerative 
apparatus, such as CPU as a data-processing means, PC equipped with 
communication facility, a game terminal, and DVD, CD, the record regenerative 
apparatus, etc., and the security chip which has the Tampa-proof structure in these 
user devices will be mounted. The example of a configuration of the user device itself 
is explained in the tail of this specification. The user device with a security chip is 
manufactured in the user device manufacturer 104 in drawing 1 . 
[0079] As shown in drawing 6 , the security chip 210 is mutually built in the user 
device 200 to the user device side control section 221 as a configuration in which data 
transfer is possible. The security chip 210 has CPU (Central Processing Unit)201 with 
a program execution function and a data-processing function. The communication 
interface 202 with the interface function for data communication, the various 
programs performed by CPU201, For example, ROM (Read Only Memory)203, the load 
field of an executive program which memorize master key:km stored at the time of 
manufacture of a code processing program and a device, Moreover, authentication 
processing with RAM (Random Access Memory)204 and the external instrument 
which function as a work-piece field in each program manipulation, The 
cipher-processing section 205 which performs cipher processing, such as generation 
of electronic signature, verification processing, a storing data encryption, and 
decryption processing, the information for every service provider mentioned above, It 
has the memory section 206 which stored the proper information on the device 
containing various key data and which is constituted by EEPROM (Electrically 
Erasable Programmable ROM), for example. About the detail of these storing 
information, it mentions later. 



[0080] The user device 200 has the external memory section 222 constituted with 
EEPROM as a field which stores encryption contents etc., a hard disk, etc. The 
external memory section 222 is available also as a storing field of a public key 
certificate and an attribute certificate, and is used also as a storing field of the count 
management file of use of the contents explained in the latter part. 
[0081] When the user device carrying a security chip connects with an external entity, 
for example, a service provider, and it performs data transfer processing, if needed, 
the security chip 210 and mutual recognition between external entities are performed, 
and a transfer data encryption is performed. The detail of these processings is 
explained in full detail in the latter part. 

[0082] The example of data used as the processing object in the security chip of a 
user device is shown in drawing 7 . Although these many are stored in the memory 
section 206 constituted by EEPROMs (Electrically Erasable Programmable ROM), 
such as a flash memory which is one gestalt of nonvolatile memory, it stores at the 
time of manufacture, and it is stored in ROM (Read Only Memory)203 data [ of which 
rewriting is made impossible ], for example, master key:, km. A public key certificate 
and an attribute certificate may be stored in the memory in a security chip, or may be 
stored in external memory. 
[0083] Each data is explained. 

Public-key certificate (PKC): A public key certificate is a certificate in which it is 
shown to a third person that it is a just public key, and the digital signature is carried 
out to the certificate by the certificate authority which can set reliance including the 
public key to distribute. The public key certificate of the service provider registered 
into the public key certificate of the top certificate authority (root CA) of the 
hierarchy organization mentioned above and the user device, i.e., the service provider 
from which the memory area is secured in the user device, and the public key 
certificate of the support center which performs the support of password return 
processing etc. further are stored in a user device. 

[0084] Attribute certificate (AC): An attribute certificate shows a certificate user's 
use authority to a public key certificate showing the certificate user's (owner) "this 
human nature." By showing an attribute certificate, a user can perform use of 
application, reservation of a field, etc. now based on the right and authority indicated 
by the attribute certificate. Below, below the class of attribute certificate is shown 
and each role to play is shown. 

[0085] (a) Application use administrative attribute certificate (AC) : it is the 
expression which used the contents generally called application in large semantics, 



and there are various applications, such as a game, music, a movie, and financial 
information, as a class of application. With an application use administrative attribute 
certificate (AC), there is description about the use authority of application, an 
attribute certificate (AC) is shown to a service provider (SP), it is local and use 
consent of the application in use authority within the limits described by the attribute 
certificate (AC) verification or by verifying is obtained, or online use of application is 
possible or off-line use is possible as description about the use authority of 
application — further — online — the case of available contents — use time 
limitation and the count limit information of use — it is — off-line — in being available 
contents, there are a count limit of use and description which shows buying up. 
[0086] (b) The attribute certificate for memory area management (reservation) for 
(service providers SP) (AC) : when registering a service provider (SP) into a user 
device, it is necessary to secure the information storing field about SP in a user 
device. The consent information on partitioning at this time is stored in an attribute 
certificate (AC), and the field for SP is secured in a user device in a user device 
according to the information stored in the attribute certificate (AC). 
[0087] (c) The attribute certificate for memory area management (deletion) for 
(service providers SP) (AC) : it is the attribute certificate (AC) which stored the 
consent information on deletion of the field for SP secured in the user device. In a 
user device, deletion of the field for SP in a user device is performed according to the 
information stored in the attribute certificate (AC). 

[0088] Key data: The key for random-number generation, the key for mutual 
recognition, etc. are stored in the storage key and pan which are used as a key for 
cipher processing in the case of data storage, such as a pair of the public key set up 
to a device as key data, and a private key, and contents. 

[0089] A storage key is a key of encryption of the contents key saved at a device, or 
decryption processing applied to either at least. There are a storage key 
corresponding to a device and a storage key corresponding to a service provider, and 
the storage key corresponding to a service provider is a key stored in each service 
provider management domain for every service provider of each which was registered 
into the device, and is applied to a storage key corresponding to the contents key 
which a corresponding service provider offers. The global common key constituted as 
a key which only a device shares with a system holder is contained, and a global 
common key is used for the storage key corresponding to a device in case message 
distribution processing of the encryption contents key which prevented the 
decryption processing in a service provider is performed. The latter part explains the 



detail of the processing which applied these keys. 

[0090] Identification information: In addition, user ID can give the user ID given to the 
user who uses the service provider ID and user device as the device ID as an own 
identifier of a user device, and an identifier of the service provider (SP) registered into 
the user device as identification information, and different user ID for every external 
entities, such as a service provider. Application ID is ID as identification information 
corresponding to the service and contents which are offered by the service provider 
(SP). 

[0091] Others: The authentication information (for example, password) for obtaining 
further use consent of the service provider (SP) information registered into the user 
device as authentication information is stored in a user device. By entering a 
password, it becomes acquirable [ the service provider (SP) information registered 
into the user device ], and use of the application which a service provider offers, and 
contents is permitted after information acquisition. When authentication information 
(password) has been forgotten, initialization (reset) processing of authentication 
information (password) is possible using a master password. 
[0092] The seed information further for random-number generation is stored. A 
random number is ANSI in the cases, such as authentication processing and cipher 
processing. It generates according to X9.17. 

[0093] Furthermore, the hash value computed based on the count information of 
contents use or the count information of contents use is stored. This is information 
which is needed in order to perform strictly contents use within the count limit of use 
stored in the attribute certificate corresponding to application and contents, and 
saves the application ID as identification information of the attribute certificate 
corresponding to contents, the serial number of an attribute certificate, and the count 
of a use limit of contents. Although the alteration is possible only by taking signature 
attachment and a hash, if detectable, there is effectiveness same with the ability not 
to alter substantially. 

[0094] Although some various data [ at least ] mentioned above are stored in the 
memory section 206 constituted by EEPROMs (Electrically Erasable Programmable 
ROM), such as a flash memory which is one gestalt of [memory configuration in user 
device] nonvolatile memory, these are classified into three fields by which division 
management was carried out, i.e., (1) device management domain, (2) 
system-management field, and (3) service provider management domain, and are 
stored in memory section 206 field. Hereafter, the storing data for every fields of 
these are explained. 



[0095] (1) The information which does not depend for a device management domain 
device management domain on the system of a device proper is held. This field is a 
field which a field is first secured at the time of device manufacture, and occupies two 
or more blocks of the head of nonvolatile memory. In a device management domain, 
the following data are held and managed at least. 

device ID random-number generation — the ** storage key for seed random-number 
generation corresponding to a cryptographic key mutual recognition key device [0096] 
A mutual recognition key is a key for authentication with the entity used as an output 
destination change, when outputting the data in a security chip to the security chip 
exterior. In addition, an entity also contains the user device equipped with a security 
chip which are regenerative apparatus, such as a game terminal, and DVD, CD, and a 
record regenerative apparatus, for example. Mutual recognition processing which 
applied the mutual recognition key at the time of the data transfer between user 
devices with a security chip and a security chip and data communication with the 
service provider of the exterior which minded the user device further etc. is 
performed. It enciphers with the session key generated the condition [ formation of 
mutual recognition ] at the time of mutual recognition, and data transfer between the 
interior of a security chip and the exterior is performed. 

[0097] The storage key corresponding to a device is a key for enciphering data and 
preventing perusal and an alteration, when holding the data inside a security chip 
outside. A public key system, a common key system, or whichever is sufficient as a 
device storage key. In case the seed for random-number generation asks for the 
pseudo-random number by arithmetic operation, he is data used as initial seed. 
Arithmetic operation of the pseudo-random number is carried out using the 
cryptographic key for random-number generation, and a random number is generated. 
[0098] The global common key constituted as a key which only a device shares with a 
system holder is contained, and a global common key is used for the storage key 
corresponding to a common key system device in case message distribution 
processing of the encryption contents key which prevented the decryption processing 
in a service provider is performed. The latter part explains a global common key to a 
detail. 

[0099] (2) A system management field system management field is secured in a 
memory area as well as a device management domain. The following data are held and 
managed in a system management field. 

Root (certificate authority CA) public key certificate device public key certificate 
device private key [0100] When the root (certificate authority CA) public key 



certificate is a certificate used as the origin of all the authentication systems in a 
security chip, follows signature verification of other certificates and performs the 
above-mentioned chain verification, finally it will arrive at the public key certificate of 
a root certificate authority (CA). 

[0101] A device public key certificate is a public key certificate used at the time of 
mutual recognition with a service provider. When generating and importing a device 
private key externally, a device public key certificate is also generated by coincidence. 
When generating a device private key and a public key by the device side, after a 
device private key and a public key are generated within a device, a device public key 
is read from a device, issue processing of a device public key certificate is performed, 
and import of the published device public key certificate is performed. 
[0102] A device private key is a key for and attesting to data. [ signature ] Although a 
private key is generated in a public key and a pair, it is generated externally 
beforehand, is generated inside whether it considers as the configuration imported to 
a device secure one, and a device, and is considered as one configuration of whether 
it considers as the configuration never taken out outside. 

[0103] (3) A service provider management domain service provider (SP) management 
domain consists of a (service provider SP) managed table and service provider (SP) 
management information. A (service provider SP) managed table is a table to show the 
whereabouts of each service provider (SP) information in a (service provider SP) 
management domain, is made to correspond to the identifier of a service provider, and 
has the storing positional information of each service provider (SP) information on 
memory. 

[0104] in addition — a service provider (SP) management domain — a user device — 
a service provider — ( — performing member registration to every SP) — a service 
provider — (— the field of every SP) is secured in the memory area in a device. In 
addition, partitioning or deletion is performed based on description of an attribute 
certificate. The following information is held in a service provider (SP) management 
domain. 

[0105] The storage private key corresponding to the private key (service provider SP) 
corresponding to (a service provider SP) (public key system) 
The storage key corresponding to (a service provider SP) (common key system) 
Count management data authentication information User Information of hash value 
contents use of external management information [0106] The private key 
corresponding to (a service provider SP) is a private key of the pair of a public key and 
a private key applied to mutual recognition processing with a registration service 



provider (registration service provider (SP who generated corresponding to every SP)), 
or encryption data transfer processing. It is the key needed when a registration 
service provider (SP) and a security chip carry out mutual recognition. 
[0107] Whenever the storage private key (public key system) corresponding to (a 
service provider SP) uses the contents which acquired off-line the contents use 
which a service provider offers when available, when it is the contents which do not 
need connection with a service provider, it is a key for decode of the encryption 
contents key corresponding to contents. In a service provider, it is enciphered with 
the storage public key corresponding to the (service provider SP) corresponding to 
the storage private key corresponding to (a service provider SP), is stored in an 
attribute certificate (AC), and is transmitted to a user device, and within the security 
chip of a user device, an encryption contents key is decoded with the storage private 
key corresponding to (a service provider SP), and becomes acquirable [ a contents 
key ]. 

[0108] Whenever the storage key (common key system) corresponding to (a service 
provider SP) uses the contents which acquired off-line the contents use which a 
service provider offers when available, when it is the contents which do not need 
connection with a service provider, it is a key for decode of the encryption contents 
key corresponding to contents, and is a key applicable to encryption and decryption 
processing in common. In addition, the storage private key (public key system) 
corresponding to (a service provider SP) and the storage key (common key system) 
corresponding to (a service provider SP) are good also as a configuration which stores 
and applies only either. . 

[0109] It is made to be not possible [ the alteration of the hash (Hash) value of 
external management information ] by taking out the data which are too large for 
managing inside a security chip to the specific region of external memory, and 
managing the hash value of the field within a security chip. For example, when applying 
a count use limit of contents, the number of ** times etc. serves as an administration 
object by the hash value. In the case of count management contents, the perusal of 
count information itself is satisfactory, but an alteration must be prevented. Although 
the alteration is possible only by taking signature attachment and a hash, if detectable, 
there is effectiveness same with the ability not to alter substantially. 
[01 10] A security chip is local and the count of available of the count management 
data application of contents use (contents) may be managed. At this time, the serial of 
Application ID and an attribute certificate (AC) and the count of available are held and 
managed inside a security chip. The latter part explains management processing of the 



count management data of contents use to a detail. 

[01 1 1] Authentication information authentication information is information to protect 
the management information managed in a service provider (SP) management domain. 
Although, as for a user, mutual recognition with a service provider (SP) is needed at 
the time of (service provider SP) connection, information required for mutual 
recognition is stored in a service provider (SP) management domain. It is the 
authentication information which is used in order to acquire required information from 
this management domain. Specifically, authentication information is a password. When 
the user has forgotten authentication information (password), use consent of the 
management information of a service provider (SP) management domain is no longer 
obtained. In this case, by inputting a master password, reset of the authentication 
information itself is performed and a change can be made. The latter part explains 
these processing configurations to a detail. 

[01 12] User Information User Information is user proper information, such as user ID 
assigned by the service provider (SP). 

[0113] Below [password management], the user device 101 shown in drawing 1 
receives the contents which a service provider (contents distributor) 102 offers, and 
the detail of various processings which is needed on the occasion of the processing 
using contents and contents use under the use limit according to an attribute 
certificate is explained. First, the authentication information for the access controls 
to the service provider management domain of the memory area in the user device 
who stored the information about the service provider which offers contents 
(password) is explained. 

[01 14] (1) In order for the user who purchased the authentication information 
(password) registration processing user device to perform processing using the 
contents which purchase contents from various service providers under management 
of a system holder and which were processed or purchased, set a service provider 
management domain as the memory area in a user device, and the processing which 
stores the management information for every service provider in this service provider 
management domain is needed. The service provider by which the service provider 
management domain was set as the memory area in a user device is called a 
registration service provider below. The above-mentioned attribute certificate is 
applied to a setup of a service provider management domain, and setting processing of 
a service provider management domain in which record of an attribute certificate was 
followed in the memory area in a user device is performed to it based on the attribute 
certificate which the user device received from the service provider. 



[01 15] In order for a user device to access and to perform the purchase of contents, 
or use to a registration service provider with a service provider management domain, 
it is necessary first to acquire the information in the service provider management 
domain in a user device. It is because it is necessary to store information required for 
the mutual recognition processing between a user device and a service provider in the 
service provider management domain, to acquire such information, and to perform 
mutual recognition with a service provider. 

[01 16] In order to access this service provider management domain, it is necessary 
for a user to input the authentication information (password) set up for every 
registration service provider through the input means of a user device. In addition, in 
the following explanation, the description with "every service provider" is synonymous 
with "every registration service and every user." It restricts, when coincidence 
verification of an input password and a registration password is performed and it is in 
agreement by the security tip side, and the information acquisition in the service 
provider management domain formed in the memory in a security chip is attained, and 
access with a subsequent service provider through which 
mutual-recognition-processes and it passes is attained. 

[0117] Authentication information (password) is set up for every service provider 
registered into the user device. The user itself performs initial registration of these 
passwords. Initial registration processing of a password is explained with reference to 
drawing 8 . In the sequence diagram of drawing 8 , it is user interface side processing 
in the user device in which left-hand side has a security chip, and right-hand side has 
a security chip. 

[01 18] First, the corresponding service provider used as the candidate for (1) 
password registration is specified, and a user inputs the initial registration processing 
initiation demand of authentication information (password). (2) In the security tip side, 
when the service provider which the user specified performs whether it is a 
registration service provider [ finishing / a setup of a management domain / already ], 
and is in the condition by which a password setup is not carried out, and status check 
processing in the memory in a security chip and these are checked, permit initial 
registration processing of (3) authentication information (password). 
[0119] Next, a user minds input means, such as a keyboard, from a user interface side. 
(4) Enter a password and the control section of (5) security chip holds the inputted 
authentication information (password) in memory temporary. (6) If the reinput demand 
of the same password is performed and reinput of authentication information 
(password) is made by (7) users (8) when the control section of a security chip 



performs collating of reinput authentication information (password) and the 
authentication information (password) currently held in memory temporary and 
collating is materialized (9) Write-in processing of authentication information 
(password) is performed, and a user is notified of a (10) write-in result, and if it is O.K., 
it ends. (1 1) In the case of NG, return to processing of (1). 

[0120] (2) The sequence diagram of modification processing of a password is shown in 
authentication information (password) modification processing drawing 9 and drawing 
10 . A password change has two processing modes, the modification processing (at 
the time [ Usually ]) which used the registered password, and the modification 
processing (emergency) using a master password. 

[0121] First, based on the sequence diagram of drawing 9 , the password change 
processing at the time, i.e., the modification processing using a registered password, is 
usually explained. It is user interface side processing of the user device in which 
left-hand side has a security chip, and right-hand side has a security chip. 
[0122] First, the corresponding service provider used as (1) password-change 
processing object is specified, and a user inputs an authentication information 
(password) modification processing initiation demand. (2) a condition [ checked / 
processed the status check and / whether you are SP who is a registered service 
provider (SP) and by whom the service provider which the user specified had the 
management domain set as memory, and the password was set up in the security tip 
side, and / these ] — carrying out — (3) — perform a registered authentication 
information (password) input request. A user enters (4) registered password through 
input means, such as a keyboard, from a user interface side, and the control section of 
(5) security chip will perform collating processing with the registration authentication 
information (password) currently written in the service provider management domain, 
if an input is checked. 

[0123] Formation of collating notifies (6) modification processing authorization. A user 
minds input means, such as a keyboard, from a user interface side. (7) Input new 
authentication information (password) and the control section of (8) security chip 
holds the inputted authentication information (password) in memory temporary. (9) If 
the reinput demand of the same password is performed and reinput of authentication 
information (password) is made by (10) users (11) when the control section of a 
security chip performs collating of reinput authentication information (password) and 
the authentication information (password) currently held in memory temporary and 
collating is materialized (12) Write-in processing of authentication information 
(password) is performed, and a user is notified of a (1 3) write-in result, and if it is O.K., 



it ends. (14) In the case of NG, return to processing of (1). 

[0124] (3) Explain the authentication information (password) reset processing using 
the master password performed in the password change processing in emergency etc. 
based on the authentication information (password) reset processing using a master 
password, next the sequence diagram of drawing 10 . It is user interface side 
processing in the terminal equipped with the user device in which left-hand side has a 
security chip, and right-hand side has a security chip. 

[0125] First, the corresponding service provider used as (1) password-change 
processing object is specified, and a user inputs an authentication information 
(password) reset processing initiation demand. (2) When the service provider which 
the user specified processes whether you are SP who is a registered service provider 
(SP) and by whom the management domain was set as memory, and the password was 
set up, and a status check and is satisfied with the security tip side of these 
conditions, perform (3) master-password input request. A user inputs (4) master 
passwords through input means, such as a keyboard, from a user interface side, the 
control section of (5) security chip performs collating processing of the inputted 
master password, and it judges whether it is the input of a right master password, and 
if it judges with it being a right master password input as a result of verification, it will 
perform in initialization of the registration authentication information (password) 
currently written in (6) service-provider management domain, i.e., the reset 
processing of registered authentication information (password). 
[0126] The control section of a security chip notifies a user of the notice of (7) 
processing result after reset processing, and if it is O.K., a user will perform the 
above-mentioned authentication information (password) registration processing, for 
example. Since these processings are the same as the processing previously 
explained with reference to drawing 8 , explanation is omitted. (8) When a reset 
processing result is NG, return to processing of (1). 

[0127] As explained using the processing sequence of drawing 10 , a master password 
is applied, in case it initialization-processes, namely, authentication information 
(password) registered about each registration service provider resets. The 
authentication information initialization (reset) processing using a master password is 
effective to the authentication information on all the service providers registered into 
the security chip. 

[0128] The related Fig. of a master password and the authentication information on 
each registration service provider (password) is shown in drawing 1 1 . As shown in 
drawing 1 1 , it exists as a high order password to each authentication information 



corresponding to a service provider, initialization (reset) of the authentication 
information on a registration service provider (password) is respectively performed by 
the input of a master password, and a master password becomes possible 
[ re-registering new authentication information as authentication information on each 
registration service provider (password) ]. 

[01 29] The form printed, for example at the time of the purchase of a user device is 
attached to a device, and a master password is distributed, as shown in drawing 12 . 
Although a master password is written in at works at the time of manufacture of a 
device, read-out from the device of the master password by the user has impossible 
composition. A master password is generated by the device based on the device ID 
which is the identifier of a proper, and a master key. a master key — 
information-processor each or a group — it is the key set up corresponding to an 
information processor. 

[0130] When the user has forgotten the master password, recurrence line processing 
of a master password is attained a condition [ the registration to a support center ]. 
The recurrence line processing sequence diagram of the user registration processing 
and the master password to a support center is shown in drawing 13 . 
[0131] The upper case of drawing 13 shows the user registration processing sequence 
diagram to a support center. A user can connect with a support center through the 
terminal which set up mailing of the registration form attached to the purchase device, 
or a device, and can perform user registration. If user registration is performed as 
processing which registers data, such as ID of the user address, the telephone number, 
and a device, into a support center and user registration is completed in a support 
center, the notice of user registration completion will be sent or transmitted to a user 
from a support center. 

[0132] The lower berth of drawing 13 is the sequence of the master password 
recurrence line processing performed between support centers with a user, when the 
user has forgotten the master password. If a user transmits the recurrence line 
demand of a master password to a support center with the User Information data 
accompanied by a device ID and a support center receives a demand, it judges 
whether User Information and user ID of a support center correspond with registered 
data, and when in agreement, retrieval of the master password based on a user device 
ID or generation processing of the master password using a master key will be 
performed. A support center has the master password storing database to which the 
device ID as a device identifier set up corresponding to the user device as an 
information processor and the master password were made to correspond, or a device 



ID and device each — the key of a proper, or a group — in having either of the master 
key storing databases to which the master key set up as a key common to a device 
was made to correspond and having a master password storing database, a database 
search is performed based on a device ID, and it acquires a master password. In 
having a master key storing database, master password generation processing by 
cipher processing which applied the master key to a device ID is performed, and it 
performs processing which sends the generated master password to a user device. 
[0133] The generation processing flow of a master password with the master key 
based on a user device ID is shown in drawing 14 . The flow of drawing 14 is explained. 
First, in step S101, encryption processing of a device ID is performed using a master 
key Km1. The result is set to MPa in step S102. furthermore, a result — MPa — 
receiving — the master key Km2 — having applied — encryption — processing 
performing — Password MP — obtaining — step S — it changes into an ASCII code 
in 103. Encryption algorithms, such as DES and Triple DES, can apply encryption 
processing. Master keys Km1 and Km2 are keys set up in common to two or more 
devices, and a support center chooses and uses the master key which should be 
applied from two or more keys held in a support center based on a user device ID. 
[0134] It returns to the sequence diagram of drawing 13 , and explanation is continued. 
If generation of a master password is performed in a support center, a support center 
will transmit or send a master password to a user or a user device online or off-line. 
[0135] According to the above sequence, a user can perform recurrence line 
processing of a master password using a support center. In addition, as for a user 
device and restricted data which perform, transmit and receive mutual recognition 
processing as pretreatment of data transmission and reception between support 
centers, for example, user ID, a master password, etc., it is desirable to encipher by 
the session key generated at the time of mutual recognition, and to perform 
generation of a signature and verification for alteration prevention of data. In addition, 
the item of the message distribution processing of contents explains details, such as 
these mutual recognition processing, signature generation, and verification processing, 
in detail. 

[0136] Moreover, a user can also perform recurrence line processing of the master 
password using a support center off-line, in this case, a postcard etc. him 
processing of filling in and sending the information for a check will be performed. <BR> 
[0137] If the management domain of a service provider is registered into the memory 
area in the security chip in a [contents message distribution processing] user device 
and information required for authentication with a service provider, the 



above-mentioned password, etc. are registered, the contents purchase by the 
communication link with a service provider will be attained using such information. 
Hereafter, the detail of contents purchase processing is explained. 
[0138] The sequence diagram explaining the outline in contents purchase processing 
is shown in drawing 15 . It is the user device side processing in which left-hand side 
has a security chip, and right-hand side is service provider side processing. 
[0139] A user device outputs the purchase demand of contents to a service provider 
first. A service provider's reception of a contents purchase demand performs mutual 
recognition between a user device and a service provider. If mutual recognition is 
materialized and both justification is checked, a service provider will generate the 
attribute certificate (AC:Attribute Certificate) corresponding to purchase demand 
contents, and will transmit to a user device. The contents key for decoding contents 
in an attribute certificate: Kc is enciphered, and it is stored and contents use 
conditions, such as a count of use and a use term, are recorded. Moreover, the 
signature of the attribute certificate certificate authority (AA:Attribute Certificate 
Authority) which is an attribute certificate publisher is made to storing data, and it has 
become a thing in consideration of alteration prevention. 

[0140] The user device which received the attribute certificate performs signature 
verification processing of an attribute certificate, and saves an attribute certificate in 
memory based on the judgment without an alteration. Furthermore, the contents key 
stored in the attribute certificate which the user device gave the demand of contents 
to the service provider, and sent the service provider to the user device previously: 
Send the contents enciphered by Kc to a user device. In a user device side, 
decryption processing of the enciphered contents key which was picked out from the 
attribute certificate is performed, contents are acquired by decryption processing of 
the encryption contents which applied the contents key which took out and took out 
the contents key, and it uses. In addition, there is also a mode (online decode) which 
performs decryption processing of the contents key stored in the attribute certificate 
by the service provider side. The latter part explains these examples of concrete 
processing. 

[0141] The rough flow accompanying contents distribution is as having explained using 
drawing 15 above. Hereafter, the detail of each processing is explained. In addition, 
although the attribute certificate corresponding to contents is performed at the point 
of encryption contents sending in the processing sequence shown in drawing 15 , 
distribution of encryption contents and distribution of an attribute certificate are good 
also as processing which the point is sufficient as any and they distribute to 



coincidence. Moreover, it is also possible to consider as the configuration which 
performs off-line distribution which stores each in record media, such as a disk, and 
distributes it. 

[0142] Moreover, as a distribution gestalt of the contents distribution to the user 
device from a service provider, or an attribute certificate (AC:Attribute Certificate), 
any gestalt of the gestalt performed based on the demand to the service provider 
from a user side and the gestalt (push type model) of the so-called push type which 
transmits to a target from a service provider on the other hand to the user who has 
made the subscriber contract regardless of the existence of a demand of a user is 
possible. In a push type model, a service provider will draw up and distribute the 
attribute certificate for target users (AC) beforehand. 

[0143] (1) Between mutual recognition processing, the user device which is the 
purchase demand entity of contents, and the service provider which is the offer origin 
of contents, mutual recognition processing is performed first. Between two means to 
perform data transmission and reception, it is performed that a partner checks 
mutually whether you are a right data communication person, and performs required 
data transfer mutually after that. Check processing of whether a partner is a right 
data communication person is mutual recognition processing. The configuration which 
performs encryption processing by using as a share key the session key which 
performed generation of a session key and was generated at the time of mutual 
recognition processing, and performs data transmission is one desirable data transfer 
method. As a mutual recognition method, application of all directions types, such as a 
public key cryptosystem and a common key encryption system, is possible. 
[0144] Here, the handshake protocol (TLS1.0) which is one authentication mode of 
processing of a public key cryptosystem is explained with reference to the sequence 
diagram of drawing 16 . 

[0145] In drawing 16 , left-hand side shows processing of a user device (client), and 
right-hand side shows the processing by the side of a service provider (server). First, 
it transmits to a user device (client) by giving a negotiation initiation demand for (1) 
service provider (server) determining an encryption specification to a halo request. (2) 
A user device (client) will be transmitted to a service provider (server) side by making 
the candidate of encryption algorithm, Session ID, and a protocol version who uses 
into a client halo, if a halo request is received. 

[0146] (3) A service provider (server) side transmits to a user device (client) by 
making into a server halo the encryption algorithm, Session ID, and the protocol 
version which opted for use. (4) A service provider (server) transmits a package of a 



public key certificate (X. 509v3) to Root CA which self owns to a user device (client) 
(server certificate). In addition, when a certificate chain is followed and even the top 
public key certificate does not verify in order, it is not necessary to necessarily send a 
package of a public key certificate (X. 509v3) to Root CA. (5) A service provider 
(server) transmits a RSA public key or Diffie&Hellman public key information to a user 
device (client) (server key exchange). This is public key information applied 
temporarily, when a certificate cannot be used. 

[0147] (6) Next, to a user device (client), as a certificate request, a service provider 
(server) side requires the certificate which a user device (client) has, and tells 
termination of the negotiation processing by (7) service providers (server) (server halo 
termination). 

[0148] (8) The user device (client) which received server halo termination transmits a 
package of a public key certificate (X. 509v3) to Root CA which self owns to a service 
provider (server) (client certificate). In addition, when not performing chain verification 
of a public key certificate, package sending of a public key certificate is not 
indispensable. (9) A user device (client) enciphers a 48-byte random number with the 
public key of a service provider (server), and transmits it to a service provider (server). 
A service provider (server) and a user device (client) generate the master secret 
which contains the data for the message authorization code:MAC (Message 
Authentication Code) generation for transmitted-and-received-data verification 
processing etc. based on this value. 

[0149] (10) in order that a user device (client) may check the rightness of a client 
certificate — the digest of the message so far — the private key of a client — 
enciphering — a service provider (server) — transmission (client certificate check) 
carrying out — (11) — notify initiation of the encryption algorithm determined 
previously and key use (change cipher spec), and notify termination of (12) 
authentications. On the other hand, initiation of the encryption algorithm previously 
determined from (13) service-provider (server) side also to the user device (client) 
and key use is notified (change cipher spec), and termination of (14) authentications 
is notified. 

[0150] According to the encryption algorithm determined in the above-mentioned 
processing, data transfer between a user device (client) and a service provider 
(server) will be performed. 

[0151] Verification of a data alteration performs alteration verification of a message 
by adding message authorization code:MAC (Message Authentication Code) computed 
from the master secret generated by the basis of agreement between a user device 



(client) and a service provider (server) by above-mentioned authentication processing 
to the transmit data of each entity. 

[0152] drawing 17 — message authorization code: — the generation configuration of 
MAC (Message Authentication Code) is shown. A data source adds the MAC secret 
generated based on the master secret generated in authentication processing to 
transmit data, calculates a hash value from these whole data, performs hash 
calculation based on a MAC secret, padding, and a hash value further, and generates a 
message authorization code (MAC). When this generated MAC is added to transmit 
data, it will judge with having no data alteration if coincidence with MAC and 
Reception MAC which were generated based on received data by the receiving side is 
accepted, and coincidence is not accepted, it judges with a thing with the alteration of 
data. 

[01 53] (2) The contents key which can apply the service provider by which the 
demand of contents was made to decryption processing of demand contents from 
generation of a contents use authority information certificate (attribute certificate), 
and a sending-user device : generate the contents use authority information 
certificate which enciphered and stored Kc and stored the use limit information on 
contents, for example, an attribute certificate, (AC), and transmit to a user. 
[0154] Even if the subject who generates a contents use authority information 
certificate (AC), for example, an attribute certificate, is the service provider itself, he 
may be an external entity which performs contents management. When an external 
entity generates an attribute certificate (AC), according to the demand of a service 
provider, the external entity generates an attribute certificate (AC). 
[0155] A contents key applicable to an attribute certificate at decode of 
correspondence encryption contents: Kc is enciphered and stored. In the lock applied 
to encryption of the contents key Kc For example (a) The private key which the 
storage public key:SC.Stopub.SP.K (b) service provider corresponding to the (service 
provider SP) corresponding to the storage private key corresponding to SP stored in 
each service provider management domain of the security chip of a user device holds : 
(Common key system) There is each global common key:kg mode generated as a key 
shared between an SP.Sto.K(c) system holder (SH) and a user device. In addition, 
some modes in addition to this are possible. For example, it is also possible to 
encipher with the public key which a service provider holds. In this case, it will decrypt 
with the private key which receives an attribute certificate (AC) from a user device, 
and a service provider holds. 

[0156] In addition, even when which encryption mode is applied, as a distribution 



gestalt of the contents distribution to the user device from a service provider, or an 
attribute certificate (AC:Attribute Certificate), any gestalt of the gestalt performed 
based on the demand to the service provider from a user side and the gestalt (push 
type model) of the so-called push type which transmits to a target from a service 
provider on the other hand to the user who has made the subscriber contract 
regardless of the existence of a demand of a user is possible. In a push type model, a 
service provider will draw up and distribute the attribute certificate for target users 
(AC) beforehand. Hereafter, the detail of the processing in the mode of 
above-mentioned (a) - (c) is explained. 

[0157] (a) The storage public key corresponding to the (service provider SP) 
corresponding to the storage private key corresponding to SP : as it is under 
explanation about the memory area of the security chip of the user device mentioned 
above when SC.Stopub.SP.K was applied and was shown, storage private 
key:SC.Stopri.SP.K corresponding to SP is stored in each service provider 
management domain formed in memory about each registration service provider 
registered into the user device. With the security chip of a user device the service 
provider corresponding to the storage private key corresponding to SP out of the 
attribute certificate corresponding to the contents offered from a service provider 
contents key:Kc enciphered by storage public key:SC.Stopub.SP.K corresponding to 
(SP) — that is Contents key:Kc is acquired by taking out [SC.Stopub.SP.K (Kc)] and 
performing decryption processing by storage private key:SC.Stopri.SP.K 
corresponding to SP. In addition, [A (B)] shall show the data which consist of B 
enciphered by A. With this gestalt, the contents decode of a user device, i.e., off-line 
decode, is attained as processing in a user device, without connecting with a service 
provider at the utilization time of contents, at i.e., the time of decode. 
[0158] In addition, although the above-mentioned example explained the example of a 
configuration which applied the public key cryptosystem, used storage public 
key:SC.Stopub.SP.K corresponding to SP for encryption of a contents key, and used 
storage private key:SC.Stopri.SP.K corresponding to SP for decode of a contents key 
It is also possible to apply a common key system, and when applying a common key 
system, storage key (common key):SC.Sto.SP.K corresponding to SP is used for 
processing of the both sides of encryption of a contents key and a decryption. In this 
case, storage key (common key):SC.Sto.SP.K corresponding to SP is stored in the 
service provider management domain of a service provider where the memory of a 
security chip corresponds. 

[0159] (b) The contents key stored in the attribute certificate set up corresponding to 



the contents which offer a service provider to a user device when private key 
(common key system):SP.Sto.K which a service provider holds is applied : encipher 
with the application of private key:SP.Sto.K in which a service provider holds Kc. Even 
if a user device receives an attribute certificate, it cannot decode encryption 
contents key: [SP.Sto.K (Kc)] stored in the attribute certificate. The private key which 
a service provider holds: It is because SP.Sto.K does not hold the user device. 
[0160] Therefore, the following processings are needed in order to use contents 
(decryption). First, a user device sends an attribute certificate to a service provider, 
performs the decode demand of a contents key, and decrypts contents key:Kc in a 
service provider by private key:SP.Sto.K which a service provider holds, contents 
key:Kc by which the user device was decrypted from the service provider — acquiring 
— this — encryption contents are decoded by contents key:Kc. Unlike the 
above-mentioned gestalt of (a), with this gestalt, a user device becomes indispensable 
[ connecting with a service provider at the utilization time of contents at i.e., the time 
of decode, ]. That is, on-line processing is needed. 

[0161] (c) The gestalt which uses this global common key when global common key:kg 
generated as a key shared between a system holder (SH) and a user device is applied 
is a configuration for setting to the service provider which performs distribution of 
contents, preventing that contents are distributed and used without authorization of a 
system holder, and performing managed contents distribution by the system holder 
(SH). The contents manufacturer key which the contents creator which offers 
contents to a service provider has, The contents distribution person key which the 
service provider which performs contents distribution has, And the encryption key 
data which performed encryption processing which combined each global common 
key:kg key generated as a key shared between a system holder (SH) and a user device 
are stored in an attribute certificate. It is the configuration which enabled it for the 
service provider itself to prevent taking out a contents key, and to take out contents 
key:Kc only in a user device by distributing to the user device which is an entity as a 
contents user. 

[0162] Hereafter, each of these gestalten are explained to a detail. First, the issue 
processing sequence of the attribute certificate common to above-mentioned (a) - 
(c) is explained using drawing 18 . 

[0163] The processing sequence of drawing 18 explains to a detail generation of the 
attribute certificate constituted as a part of contents purchase processing sequence 
of drawing 15 explained previously, and transmitting processing. A security chip is built 
in, the service provider management domain is generated by the memory in a security 



chip, and a user device presupposes that service provider management information is 
storing ending. 

[0164] Processing of drawing 18 is explained. As for the user device with (1) security 
chip, an attribute certificate (AC) is required from a service provider after 
materializing the mutual recognition between a user device and a service provider. A 
users public key certificate (PKC) is attached to the data which signed Application ID 
and the use condition data which the user chose further as the user ID registered into 
the service provider management domain, and an assignment identifier of contents 
with a user's private key (private key corresponding to a service provider), and it 
transmits to an attribute certificate (AC) demand. Use condition data are tbe data, 
such as for example, a count of a contents use limit, and a use term, and when 
selectable, they are contained by the user as user tbe data. 

[0165] Being added in order to enable verification of a data alteration, and using the 
above-mentioned MAC value can also be signed, and it can also apply the electronic 
signature using a public key cryptosystem. 

[0166] The generation method of electronic signature using a public key cryptosystem 
is explained using drawing 19 . The processing shown in drawing 19 is the generation 
processing flow of the electronic signature data which used EC-DSA (Elliptic Curve 
Digital SignatureAlgorithm) (IEEE P1363/D3). In addition, the example which used the 
elliptic curve cryptosystem (Elliptic Curve Cryptosystem (hereafter referred to as 
ECO) as public key encryption here is explained, in addition, in the data processor of 
this invention, it is also possible to use RSA cryptograph (Rivest, Shamir, Adleman), 
such as etc. (ANSI X9.31), in the same public key cryptosystem besides an elliptic 
curve cryptosystem. 

[01 67] Each step of drawing 19 is explained. In step S1 , let the base point on an elliptic 
curve, and r into the order of G, and let [ p / the characteristic, and a and b ] Ks be a 
private key (0<Ks<r) for the multiplier (elliptic curve: y2=x3+ax+b, four a3+27b2!=0 
(mod p)) of an elliptic curve, and G. Step S2 The hash value of Message M is 
calculated by setting, and it considers as f=Hash (M). 

[0168] Here, how to calculate a hash value using a Hash Function is explained. A Hash 
Function is a function which considers a message as an input, compresses this into 
the data of predetermined bit length, and is outputted as a hash value. It is difficult for 
a Hash Function to predict an input from a hash value (output), and when 1 bit of the 
data inputted into the Hash Function changes, discovering different input data which 
many bits of a hash value change and has the same hash value has the difficult 
description. As a Hash Function, MD4, MD5, SHA-1, etc. may be used and DES-CBC 



may be used. In this case, MAC (check value: it is equivalent to ICV) used as a final 
output value serves as a hash value. 

[0169] Continuously, at step S3, a random number u (0<u<r) is generated and the 
coordinate V (Xv, Yv) which doubled the base point u by step S4 is calculated. In 
addition, the addition on an elliptic curve and 2 double ** are defined as follows. 
[0170] 

[Equation 1] When P= (Xa, Ya), Q= (Xb. Yb), and R=(Xc, Yc) =P+Q f it is Xc=lambda 2-2 
XaYc=lambda x(Xa~Xc)-Yalambda=(3 (Xa) 2+a)/(2Ya) [0171] at the time (2 double **) 
of Xc=lambda 2-Xa~XbYc=lambda x(Xa-Xc)-Yalambda=(Yb-Ya)/(Xb-Xa)P=Q at the 
time of P!=Q (addition), u times of Point G are calculated using these (although a rate 
is slow, it carries out as follows as the most intelligible operation approach.). G, 2xG, 
and 4xG is calculated and 2 ixG (value which 2-double-**(ed) G i times (bit position 
when counting i from LSB of u)) corresponding to the place carries out binary number 
expansion of the u, and 1 stands is added. 

[01 72] At step S5, c=Xvmod r is calculated and it judges whether this value is set to 0 
at step S6, if it is not 0, d=[(f+cKs) /u] mod r will be calculated at step S7, it judges 
whether d is 0 at step S8, and if d is not 0, c and d will be outputted as electronic 
signature data by step S9. If r is assumed to be the die length of 160 bit length, 
electronic signature data serve as 320 bit length. 

[0173] In step S6, when c is 0, it returns to step S3 and a new random number is 
regenerated. Similarly, when d is 0 at step S8, it returns to step S3 and a random 
number is regenerated. 

[0174] Next, the verification approach of electronic signature using a public key 
cryptosystem is explained using drawing 20 . step S11 — M — let the multiplier 
(elliptic curve: y2=x3+ax+b, four a3+27b2!=0 (mod p)) of an elliptic curve, and G as the 
base point on an elliptic curve, and let [ a message and p / the characteristic, and a 
and b ] the order of G, G, and KsxG be public keys (0<Ks<r) for r. It verifies whether 
the electronic signature data c and d fill 0<c<r and 0<d<r with step S12. When this is 
being filled, at step S13, the hash value of Message M is calculated and it considers as 
f=Hash (M). Next, h= Wd mod r is calculated at step S14, and it is h1=fh at step S15. 
mod r, h2=chmod r is calculated. 

[0175] In step S16, point P=(Xp, Yp) =h1xG+h2 and KsxG are calculated using hi and 
h2 which were already calculated. Since the electronic signature verification person 
knows the base point G and KsxG, he can do count of the scalar multiple of the point 
on an elliptic curve like step S4 of drawing 19 . And Point P judges whether it is an 
infinite point at step S17, and if it is not an infinite point, it will progress to step S18 



(the judgment of an infinite point will be able to be performed at step S16 in fact.). 
That is, if addition of P= (X, Y) and Q= (X, -Y) is performed, lambda cannot be 
calculated but it will have become clear that P+Q is an infinite point. Xp mod r is 
calculated at step S18, and it compares with the electronic signature data c. Finally, 
when this value is in agreement, it progresses to step S19 and electronic signature 
judges with the right. 

[0176] When electronic signature is judged to be the right, it turns out that data were 
not altered but the person holding the private key corresponding to a public key 
generated electronic signature. 

[0177] In step S12, when the electronic signature data c or d do not fill 0<c<r and 
0<d<r, it progresses to step S20. Moreover, in step S17, also when Point P is an 
infinite point, it progresses to step S20. In step S18, also when the value of Xp mod r 
is not in agreement with the electronic signature data c f it progresses to step S20 
further again. 

[0178] In step S20, when judged with electronic signature not being right, it turns out 
that those who data are altered or hold the private key corresponding to a public key 
did not generate electronic signature. Although the alteration is possible only by 
taking signature attachment and a hash as mentioned above, there is effectiveness 
same with the ability not to alter substantially by detection. 

[0179] The contents key corresponding to the contents specified with Application ID 
when it checks that the service provider which received the attribute certificate (AC) 
demand does not have an alteration in requested data by above-mentioned signature 
verification processing etc.: Encipher Kc. This contents key: The key applied to 
encryption of Kc is global common key:kg either which is generated as a key shared 
between storage private key:SC.Stopri.SP.K corresponding to SP stored in each 
service provider management domain of the security chip of the above-mentioned (a) 
user device, private key:SP.Sto.K which the (b) service provider holds, (c) system 
holder (SH), and a user device. 

[0180] Furthermore, a service provider generates the attribute certificate which 
stores the data requirement besides use condition data of contents, and shows it to 
drawing 5 mentioned above. The electronic signature which used the private key of a 
service provider is added to the generated attribute certificate. Generation processing 
of electronic signature is performed according to the same processing as the 
processing flow of drawing 19 . The attribute certificate generated by the service 
provider is sent to a user device, and signature verification processing is performed in 
a user device according to the same sequence as the processing flow of 



above-mentioned drawing 20 . 

[0181] Furthermore, it is desirable for a user device to acquire the public key 
certificate linked according to the public key certificate information of AC holder in an 
attribute certificate (AC), and to verify a public key certificate if needed. For example, 
when the reliability of the publisher of an attribute certificate (AC) is uncertain, the 
judgment of whether to have the public key certificate of a certificate authority justly 
is attained by verifying the public key certificate of the publisher of an attribute 
certificate (AC). In addition, as the public key certificate mentioned above, when 
hierarchy organization is being made, it is desirable to perform to verification of the 
public key certificate which followed the path on the high order, and performed a chain 
of verification, and the root certificate authority (CA) published. In addition, this chain 
verification may be indispensable. 

[0182] The detail of related check processing with an attribute certificate (AC) and a 
public key certificate (PKC) and verification processing of each certificate is explained 
with reference to drawing. The flow of drawing 21 is check processing of the public 
key certificate (PKC) relevant to the attribute certificate (AC) performed in case 
verification of an attribute certificate (AC) is performed. 
[0183] If the attribute certificate for a check (AC) is set (S21), the public key 
certificate information (holder) field of AC holder of an attribute certificate will be 
extracted (S22). The publisher information on the public key certificate stored in the 
extracted public key certificate information (holder) field (PKC issuer), A public key 
certificate serial number (PKC serial) is checked (S23). A public key certificate (PKC) 
is searched based on the publisher information (PKCissuer) on a public key certificate, 
and a public key certificate serial number (PKC serial) (S24), and the public key 
certificate (PKC) related with the attribute certificate (AC) is acquired (S25). 
[0184] As shown in drawing 21 , correlation is made by the public key certificate 
publisher information (PKC issuer) and the public key certificate serial number (PKC 
serial) in the public key certificate information (holder) field where the attribute 
certificate (AC) and the public key certificate (PKC) were stored in the attribute 
certificate. 

[0185] Next, with reference to drawing 22 , verification processing of a public key 
certificate (PKC) is explained. Verification of the public key certificate (PKC) shown in 
drawing 22 is a chain verification processing flow which follows a certificate chain 
from low order to a high order, acquires the chain information to the top public key 
certificate, and performs signature verification of the public key certificate to the 
most significant (root CA). First, the public key certificate (PKC) used as the 



candidate for verification is set (S31), and a public key certificate (PKC) signer is 
specified based on public key certificate (PKC) storing information (S32). Furthermore, 
it judges whether it is the top public key certificate of the certificate chain used as 
the candidate for verification (S33), and when it is not the most significant, the top 
public key certificate is acquired from direct or a repository (S34). If the top public key 
certificate is acquired and set (S35), a verification key (public key) required for 
signature verification is acquired (S36), and it judges whether the signature for 
verification is a self-signature (S37), and when it is not a self-signature, low order 
PKC will be set (S39) and signature verification will be performed based on the 
verification key (public key) acquired from the public key certificate of a high order 
(S40). In addition, in the self-signature judging in step S37, in a self-signature, 
verification which used the self public key as the verification key is performed (S38), 
and it progresses to step S41. 

[0186] It judges whether when it succeeded in signature verification (S41:Yes), the 
verification of PKC made into the purpose was completed (S42), and PKC verification 
is ended when having completed. When having not completed, to step S36, acquisition 
of a required verification key (public key) and signature verification of a low-ranking 
public key certificate are repeated to return and signature verification, and it performs. 
In addition, when signature verification goes wrong (S41:No), it progresses to step S43 
and processing of stopping the procedure of error processing, for example, after that, 
is performed. 

[0187] Next, with reference to drawing 23 , verification processing (Example 1) of an 
attribute certificate (AC) is explained. First, the attribute certificate (AC) used as the 
candidate for verification is set (S51), and the owner and signer of an attribute 
certificate (AC) are specified based on the attribute (certificate AC) storing 
information (S52). Furthermore, the public key certificate of the owner of an attribute 
certificate (AC) is acquired from direct or a repository (S53), and verification 
processing of a public key certificate is performed (S54). 

[0188] When verification of a public key certificate goes wrong (it is No at S55), it 
progresses to step S56 and error processing is performed. For example, subsequent 
processing is stopped. When it succeeds in verification of a public key certificate (it is 
Yes at S55), the public key certificate corresponding to the signer of an attribute 
certificate (AC) is acquired from direct or a repository (S57), and verification 
processing of a public key certificate is performed (S58). When verification of a public 
key certificate goes wrong (it is No at S59), it progresses to step S60 and error 
processing is performed. For example, subsequent processing is stopped. When it 



succeeds in verification of a public key certificate (it is Yes at S59), a public key is 
picked out from the public key certificate corresponding to the signer of an attribute 
certificate (AC) (S61), and signature verification processing of an attribute certificate 
(AC) is performed using ** and the taken-out public key (S62). When signature 
verification goes wrong (it is No at S63), it progresses to step S64 and error 
processing is performed. For example, subsequent processing is stopped. When it 
succeeds in signature verification (it is Yes at S63), attribute certificate verification is 
ended and it shifts to subsequent processing, for example, acquisition of the 
encryption contents key in an attribute certificate etc. 

[01 89] Next, with reference to drawing 24 , verification processing (Example 2) of an 
attribute certificate (AC) is explained. This example is an example to which it was 
presupposed that the verification is omitted, when it judges whether the public key 
certificate which is needed for verification processing of an attribute certificate (AC) 
is stored and the public key certificate is stored in the self-device. First, the attribute 
certificate (AC) used as the candidate for verification is set (S71), and the owner and 
signer of an attribute certificate (AC) are specified based on the attribute (certificate 
AC) storing information (S72). Furthermore, the public key certificate (PKC) of the 
owner of an attribute certificate (AC) searches whether storing preservation is 
carried out in the memory in a self-device (S73). When saved (it is Yes at S74), the 
public key certificate of the owner of an attribute certificate (AC) is taken out (S75), 
and it progresses to ** and step S81. 

[0190] When the public key certificate (PKC) of the owner of an attribute certificate 
(AC) is not saved in the memory in a self-device (it is No at S74), the public key 
certificate (PKC) of the owner of an attribute certificate (AC) is acquired from direct 
or a repository (S76), and verification processing of the public key certificate (PKC) of 
the owner of an attribute certificate (AC) is performed (S77). When verification of a 
public key certificate goes wrong (it is No at S78), it progresses to step S79 and error 
processing is performed. For example, subsequent processing is stopped. When it 
succeeds in verification of a public key certificate (it is Yes at S78), after saving the 
verification result of a public key certificate (S80), the public key certificate (PKC) 
corresponding to the signer of an attribute certificate (AC) searches whether storing 
preservation is carried out in the memory in a self-device (S81). When saved (it is Yes 
at S82), the public key certificate of the signer of an attribute certificate (AC) is taken 
out (S83), and it progresses to ** and step S88. 

[0191] When the public key certificate (PKC) of the signer of an attribute certificate 
(AC) is not saved in the memory in a self-device (it is No at S82), the public key 



certificate (PKC) of the signer of an attribute certificate (AC) is acquired from direct 
or a repository (S84), and verification processing of the public key certificate (PKC) of 
the signer of an attribute certificate (AC) is performed (S85). When verification of a 
public key certificate goes wrong (it is No at S86), it progresses to step S87 and error 
processing is performed. For example, subsequent processing is stopped. When it 
succeeds in verification of a public key certificate (it is Yes at S86) f the key (public 
key) applied to signature verification of a public key certificate to an attribute 
certificate (AC) is taken out (S88), and signature verification processing of an 
attribute certificate (AC) is performed (S89). When signature verification goes wrong 
(it is No at S90), it progresses to step S91 and error processing is performed. For 
example, subsequent processing is stopped. When it succeeds in signature verification 
(it is Yes at S90), attribute certificate verification is ended and it shifts to subsequent 
processing, for example, acquisition of the encryption contents key in an attribute 
certificate etc. 

[0192] When verification of the attribute certificate by the user device is made, an 
attribute certificate will be stored in the memory of the security chip in a user device, 
or the external memory under management of the user device control section besides 
a security chip, and will perform acquisition of the encryption contents key in an 
attribute certificate, and decryption processing to the utilization time of contents. The 
processing which acquires and decodes the contents key enciphered from the 
attribute certificate is explained below. 

[0193] (a) storage public key: corresponding to (the service provider SP) 
corresponding to the storage private key corresponding to SP — the service provider 
corresponding to [ when SC.Stopub.SP.K is applied ] the storage private key 
corresponding to (a) SP of the above-mentioned first — apply storage public 
key:SC.Stopub.SP.K corresponding to (SP) to encryption of contents key:Kc, and 
explain the contents use processing based on the attribute certificate which stored 
[SC.Stopub.SP.K (Kc)]. 

[0194] The storage private key corresponding to SP: SC.Stopri.SP.K is stored in a 
serv j ce provider management domain, and a user can take out and use this key by the 
authentication information (password) input mentioned above. Therefore, a contents 
key: Kc can be acquired as off-line processing, without connecting with a service 
provider, and the decode of contents of it is attained. 

[0195] Drawing which explains the sequence of the encryption contents key 
acquisition from an attribute certificate, decode, and the contents decryption 
processing with a contents key to drawing 25 is shown. 



[0196] It explains according to the sequence diagram of drawing 25 . Drawing 25 
shows processing of the memory inside a security chip, a security chip control section, 
and a user device control section from the left. First, the application ID as contents 
identification information which the user inputted to the user device is transmitted to 
a security chip control section, and the attribute certificate (AC) corresponding to 
Application ID is acquired from memory. It verifies whether it is an attribute certificate 
corresponding to Application ID, an attribute certificate is set to a security chip 
control section, and a user device requires acquisition (decode) processing of 
contents key:Kc. 

[0197] A security chip control section performs signature verification of an attribute 
certificate, it checks that there is no data alteration, takes out encryption contents 
key: [SC.Stopub.SP.K (Kc)] stored in the attribute certificate, performs decryption 
processing with the application of storage private keyiSC.Stopri.SP.K corresponding 
to SP stored in the service provider management domain, and acquires contents 
key:Kc. Contents key: If it succeeds in acquisition of Kc, a security chip control 
section will notify that decode preparation of contents was completed to a user 
device control section. 

[0198] Next, a user device control section acquires the encryption contents which 
should be decoded with the application of the acquired contents key from memory 
through a security chip control section. When encryption contents are stored in 
external memory (for example, hard disk) instead of memory etc. in a security chip, 
encryption contents are acquired from external memory. Furthermore, the acquired 
encryption contents are transmitted to a security chip, decryption processing which 
applied contents key:Kc to encryption contents within the security chip is performed, 
and the contents obtained as a decryption processing result are outputted to a user 
device control section. 

[0199] In addition, although considered as the configuration which applied the public 
key cryptosystem, used storage public key:SC.Stopub.SP.K corresponding to SP for 
encryption of a contents key, and used storage private key:SC.Stopri.SP.K 
corresponding to SP for decode of an encryption contents key in the 
above-mentioned example of a configuration It is also possible to apply a common key 
system, and when applying a common key system, storage key (common 
key):SC.Sto.SP.K corresponding to SP is used for processing of the both sides of 
encryption of a contents key and a decryption. In this case, storage key (common 
key):SC.Sto.SP.K corresponding to SP is stored in the service provider management 
domain of a service provider where the memory of a security chip corresponds. 



[0200] (b) a service provider — holding — a private key (common key system) — : — 
SP . — Sto . — K — having applied — a case — next — the above-mentioned — ( — 
b — ) — a service provider — holding — a private key — : — SP . — Sto . — K 
contents — a key — : — Kc — encryption — applying — [ — SP . — Sto . K ( 
Kc — ) — ] — having stored — an attribute — a certificate — being based — 
contents — use — processing — ******** — explaining . 

[0201] The private key which a service provider holds: SP.Sto.K is a key which a 
service provider holds and is not stored in the user device. Therefore, in order for a 
user device to acquire contents key:Kc, it will connect with a service provider, it will 
be necessary to require decryption processing of a contents key from a service 
provider, and the contents decode by on-line processing will be performed. 
[0202] Drawing which explains the sequence of the contents key acquisition from an 
attribute certificate, decode, and the contents decryption processing with a contents 
key to drawing 26 is shown. 

[0203] It explains according to the sequence diagram of drawing 26 . Drawing 26 
shows the processing in the memory inside a security chip, a security chip control 
section, a user device control section, and a service provider from the left. 
[0204] First, the application ID as contents identification information which the user 
inputted to the user device is transmitted to a security chip control section, and the 
attribute certificate (AC) corresponding to Application ID is acquired from memory. It 
verifies whether it is an attribute certificate corresponding to Application ID, an 
attribute certificate is set to a security chip control section, and a user device 
requires acquisition (decode) processing of contents key:Kc. 

[0205] It connects through a user device after verification of an attribute certificate 
to the service provider which is attribute certificate issue-origin, and a security chip 
control section performs mutual recognition processing between a security chip and a 
service provider. This mutual recognition processing is performed as mutual 
recognition processing by TLS1.0 processing of drawing 16 explained previously, or 
other methods, for example, a public key system. In this mutual recognition processing, 
verification of a mutual public key certificate is made and the public key certificate to 
a root certificate authority (CA) is verified continuously if needed. In this 
authentication processing, a security chip and a service provider share a session key 
(Kses). 

[0206] If mutual recognition is materialized, the control section of a security chip will 
send an attribute certificate to a service provider. The data of the contents key 
enciphered by private key:SP.Sto.K which a service provider holds, i.e., [SP.Sto.K], 



(Kc) are stored in the attribute certificate. 

[0207] The service provider which received the attribute certificate from the security 
chip performs signature verification processing of an attribute certificate. Moreover, it 
is desirable in this case to verify continuously the public key certificate linked to an 
attribute certificate and its high order public key certificate. In addition, this chain 
verification may be indispensable. By these verification processings, if the justification 
of an attribute certificate is checked, using private key:SP.Sto.K which self owns, a 
service provider will perform decryption processing of encryption contents key: 
[SP.Sto.K (Kc)] stored in the attribute certificate, and will take out contents key:Kc. 
Furthermore, the taken-out contents key: Encipher by the session key (Kses) which 
generated Kc in previous mutual recognition processing, and transmit to the security 
chip of a user device. 

[0208] If the contents key enciphered by the session key from the service provider, 
i.e., [Kses], (Kc) is received, the control section of a security chip will perform 
decryption processing using the session key held at the time of mutual recognition, 
and will acquire contents key.Kc. 

[0209] Contents key: If it succeeds in acquisition of Kc, a security chip control section 
will notify that decode preparation of contents was completed to a user device control 
section. Next, a user device control section acquires the encryption contents which 
should be decoded with the application of the acquired contents key from memory 
through a security chip control section. When encryption contents are stored in 
external memory (for example, hard disk) instead of memory etc. in a security chip, 
encryption contents are acquired from external memory. Furthermore, the acquired 
encryption contents are transmitted to a security chip, decryption processing which 
applied contents key:Kc to encryption contents within the security chip is performed, 
and the contents obtained as a decryption processing result are outputted to a user 
device control section. 

[0210] (c) When global common key:kg generated as a key shared between a system 
holder (SH) and a user device is applied next, explain to encryption of contents key:Kc 
processing stored in an attribute certificate indirectly with the application of global 
common key:kg generated as a key shared between a system holder (SH) and a user 
device. The gestalt using this global common key is enabled to take out contents 
key:Kc only in a user device, and the service provider which performs distribution of 
contents is making ejection of a contents key impossible, it prevents that contents 
are distributed and used without authorization of a system holder, and it becomes 
possible to perform managed contents distribution by the system holder (SH). 



[0211] The encryption key data which performed encryption processing which 
combined each global common key:kg key generated as the contents manufacturer 
key which the contents creator which offers contents to a service provider 
specifically has, the contents distribution person key which the service provider which 
performs contents distribution has, and a key shared between a system holder (SH) 
and a user device are stored in an attribute certificate. 

[0212] Drawing explaining the detail of the processing which stores and distributes the 
encryption data of contents key:Kc to encryption of contents key:Kc indirectly with 
the application of global common key:kg at drawing 27 at an attribute certificate is 
shown. 

[0213] The system holder 301 which builds the platform of contents distribution and is 
managed, the service provider (CD: contents distributor) 302 which performs contents 
distribution, and contents are generated or managed in drawing 27 , and the user 
device 304 as an end entity which receives contents is shown in it from the contents 
creator 303 which offers encryption contents to a service provider 302, and the 
service provider 302. In addition, the user device 304 has a security chip like the 
example of the above-mentioned (a) and (b), and the service provider management 
domain is generated by the memory area in a security chip. 
[0214] Processing of drawing 27 is explained. First, the contents key which the 
contents creator 303 generated key:Kc for enciphering the contents used as the 
candidate for distribution with the random number, and was generated (common key 
system): Using Kc, encipher (1) contents and provide for a service provider 302. 
[0215] Furthermore, the service-provider key which the system holder 301 receives 
contents creator key (common key system):Kcc which (2) contents creator 303 to the 
contents creator 303 holds, and the (3) service provider (CD: contents distributor) 
302 to the service provider 302 holds (common key system): Receive Kcd. In addition, 
these keys may deliver in advance. 

[0216] The system holder 301 enciphers contents creator key:Kcc by service provider 
key:Kcd, and enciphers this encryption data by global common key:kg further, namely, 
encryption key data: [Kg ([Kcd (Kcc)])] — generating — (4) — this is sent to the 
contents creator 303. In addition, [Kg ([Kcd (Kcc)])] may deliver in advance. Global 
common key: kg is a key which the user device 304 shares with the system holder 301 . 
the user device 304 — the time of (5) device manufacture — the time of device sale 
— or — at least — by [ before purchase initiation of contents ] — one or more 
global — common — key:kg1-Kgn is stored and, as for these, an update process is 
performed under management of a system holder. About an update process, it 



mentions later. 

[0217] data: [Kcc (Kc)] as which the contents creator 303 enciphered contents 
key:Kc by contents creator key:Kcc — generating — (6), while transmitting this to a 
service provider 302 The contents creator key received from the system holder 301 : 
Kcc is enciphered by service provider key:Kcd. Furthermore, encryption key data: [Kg 
([Kcd (Kcc)])] which enciphered this encryption data by global common key:kg is 
transmitted to a service provider 302. In addition, [Kg ([Kcd (Kcc)])] may deliver in 
advance. 

[0218] If the user device 304 performs (7) contents purchase demand to a service 
provider 302, (8) service providers will generate the attribute certificate 
corresponding to demand contents, and will transmit to the user device 304. The data 
which enciphered cryptographic-key data [ above-mentioned ]: [Kg ([Kcd (Kcc)])], i.e., 
contents creator key:Kcc, by service-provider key:Kcd in the attribute certificate 
(AC) to generate, and enciphered this encryption data by global common key:kg 
further in it, and a contents key: Data: [Kcc (Kc)] which enciphered Kc by contents 
creator key:Kcc is stored. In addition, data, such as use conditions of contents, are 
stored, the electronic signature of a service provider 302 is made, and it is transmitted 
to the user device 304. The user device 304 stores the received attribute certificate 
(AC) in memory. 

[0219] (10) after the user device 304 carries out (9) mutual recognition to the 
utilization time of contents between service providers 302 — an attribute certificate 
[ finishing / reception / previously ] (AC) is transmitted to a service provider 302. 
Mutual recognition processing is performed as mutual recognition processing between 
the security chip of a user device, and a service provider. This mutual recognition 
processing is performed as mutual recognition processing by TLS1.0 processing of 
drawing 16 explained previously, or other methods, for example, a public key system. 
In this mutual recognition processing, verification of a mutual public key certificate is 
made and the public key certificate to a root certificate authority (CA) is verified 
continuously if needed. In this authentication processing, a security chip and a service 
provider share a session key (Kses). 

[0220] Data: [Kg ([Kcd (Kcc)])] which enciphered the above-mentioned contents 
creator key:Kcc by service-provider key:Kcd in the attribute certificate, and 
enciphered this encryption data by global common key:kg further in it, and a contents 
key: Data: [Kcc (Kc)] which enciphered Kc by contents creator key:Kcc is stored. 
[0221] The service provider which received the attribute certificate from the security 
chip performs signature verification processing of an attribute certificate. Moreover, it 



is desirable in this case to verify continuously the public key certificate linked to an 
attribute certificate and its high order public key certificate. In addition, this chain 
verification may be indispensable. The service-provider key in which self owns (11) 
service providers by these verification processings if the justification of an attribute 
certificate is checked: Encipher Kcd by session key:Kses generated at the time of 
mutual recognition, generate encryption key data [Kses (Kcd)], and transmit this to a 
user device. 

[0222] About the encryption key data [Kses (Kcd)] received from the (12) service 
provider 302, the security chip control section of the user device 304 performs 
decryption processing which used the session key, and acquires service provider 
key:Kcd. In addition, a service-provider key: Kcd may be kept to a service provider 
memory area in advance. 

[0223] Next, the security chip control section of the user device 304 enciphers 
contents creator key:Kcc (13) attribute certification in the letter by service provider 
key:Kcd, further, about data: [Kg ([Kcd (Kcc)])] which enciphered this encryption data 
by global common key:kg, is decoded by global common key:kg which self owns, and 
acquires [Kcd (Kcc)] first. Furthermore, the service-provider key acquired by the 
decode of encryption key data which received from the (14) service provider 302: 
Acquire contents creator key:Kcc by decryption processing which applied Kcd. 
[0224] Furthermore, the contents creator key which the security chip control section 
of (15) user device 304 took out data: [Kcc (Kc)] which enciphered contents key:Kc 
attribute certification in the letter by contents creator key:Kcc, and was acquired by 
said processing: Perform decryption processing which applied Kcc and acquire 
contents key:Kc. 

[0225] Contents key: If it succeeds in acquisition of Kc, the security chip control 
section of the user device 304 will notify that decode preparation of contents was 
completed to a user device control section. 

[0226] The user device 304 transmits the encryption contents ((16) processings) 
acquired from the service provider 302 to a security chip, and performs decryption 
processing which applied contents key:Kc to encryption contents within the security 
chip. 

[0227] In addition, it is desirable to perform mutual recognition among entities which 
perform data transmission and reception before data transmission and reception, such 
as a key between each above-mentioned entity and an encryption key, and to perform 
the data transmission and reception on condition of authentication formation, and it is 
desirable to consider as the configuration which enciphered the transmitted and 



received data by the session key, and gave the signature. 

[0228] Thus, only a user device and a system holder own a global common key, and 
other entities do not hold and consist of other entities as an unacquirable key. 
Therefore, also in a service provider, acquisition of a contents key is impossible and 
prevention of circulation of a contents key without authorization of a system holder 
and circulation of contents is attained. 

[0229] A global common key is updated if needed. The support center under 
management of a system holder performs updating. The global common key update 
process sequence performed between a support center and a user device is shown in 
drawing 28 . Two global common keys Kg1 and Kg2 shall be stored in the memory area 
in the security chip of a user device. The key data encryption in an attribute 
certificate is made using these either, and decryption processing is performed. Or it is 
good also as a configuration which performs the key data encryption in an attribute 
certificate using two keys, for example with the application of a Triple DES algorithm, 
and performs decryption processing using two keys. 

[0230] Each processing shown in the processing sequence of drawing 28 is explained. 
Drawing 28 shows the processing in the support center which is from the left under 
management of a security chip control section, a user device control section, and a 
system holder. 

[0231] first, a user device control section is global — common — if the renewal 
demand of keyikg is transmitted to a security chip control section, it will connect 
through a user device to the support center under management of a system holder, 
and a security chip control section will perform mutual recognition processing 
between a security chip and a support center. This mutual recognition processing is 
performed as mutual recognition processing by TLS1.0 processing of drawing 16 
explained previously, or other methods, for example, a public key system. In this 
mutual recognition processing, verification of a mutual public key certificate is made 
and the public key certificate to a root certificate authority (CA) is verified 
continuously if needed. In this authentication processing, a security chip and a 
support center share a session key (Kses). 

[0232] when mutual recognition is materialized, the control section of a security chip 
is global to a support center — common — the renewal demand of keyikg is outputted. 
the object [ finishing / a support center / generation / already ] for updating — global 
— common — it generated according to key:kg3 or a demand — global — common — 
it enciphers by session key:Kses which generated key:kg3 in authentication 
processing, and encryption key data: [Kses (kg3)] is transmitted to the security chip 



of a user device. 

[0233] the control section of a security chip was enciphered by the session key from 
the support center — global — common — global [ perform decryption processing 
using the session key held at the time of mutual recognition and ], when key:kg3 (kg3) f 
i.e., [Kses], are received — common — key:kg3 are acquired. 

[0234] global — common — when it succeeds in acquisition of key:kg3, a security chip 
control section is global — common — key:kg1 was acquired — global — common — 
it transposes to key:kg3. Thereby, the global common key which a user device holds is 
set to Kg2 and Kg3. Since the global common key which a user device holds is 
meaningful also including the order relation, it also combines the order relation of [Kg1 , 
Kg2], and is corrected with [Kg2, Kg3]. With key data, a global common key shall also 
double the order relation currently held within the user device, and shall hold data. 
[0235] Drawing 29 is drawing having shown the example of a processing sequence 
which a service provider intercedes and performs renewal of a global common key, 
without a user device and a support center performing immediate-data transmission 
and reception. 

[0236] Each processing shown in the processing sequence of drawing 29 is explained. 
Drawing 29 shows the processing in the support center which is from the left under 
management of a security chip control section, a user device control section, a 
service provider, and a system holder. 

[0237] it is updated in a support center — new — global — common — key:kg3 are 
generated in advance and global — common — finishing [ 3 / key:kg/ distribution to a 
user device ] already — global — common — it enciphers by key:kg2 and data: [Kg2 
(kg3)] is generated, and a signature is given to this by private key:Kss of a support 
center, and it sends to it at a service provider. A service provider has data [Kg2 (kg3)] 
and Sig [Kss]. In addition, A and Sig [B] shall show the data configuration which added 
the signature with Key B to Data A. 

[0238] next, a user device control section is global — common — if the renewal 
demand of key:kg is transmitted to a security chip control section, it will connect 
through a user device to a service provider, and a security chip control section will 
perform mutual recognition processing between a security chip and a service provider. 
This mutual recognition processing is performed as mutual recognition processing by 
TLS1.0 processing of drawing 16 explained previously, or other methods, for example, 
a public key system. In this mutual recognition processing, verification of a mutual 
public key certificate is made and the public key certificate to a root certificate 
authority (CA) is verified continuously if needed. In this authentication processing, a 



security chip and a service provider share a session key (Kses). 
[0239] when mutual recognition is materialized, the control section of a security chip 
is global to a service provider — common — the renewal demand of key:kg is 
outputted. A service provider transmits data [ finishing / reception ] [Kg2 (kg3)] and 
Sig [SuC] from a support center to the security chip of a user device. 
[0240] If a transfer of the data [Kg2 (kg'3)] from [ from a service provider ] a support 
center and Sig [SuC] is received, the control section of a security chip As opposed to 
key:kg3 [2 (kg3) ], i.e., [Kg], signature verification processing is performed, and self 
owns, after checking that there is no data alteration — global — common — it was 
enciphered by key:kg2 — global — common — global — common — global [ perform 
decryption processing using key:kg2 and ] — common — key:kg3 are acquired. In 
addition, when applying the public key of a support center to signature verification of a 
support center, the public key certificate of a support center is transmitted with data 
[Kg2 (kg3)] and Sig [SuC] to a user device, or it distributes to the user device 
beforehand. 

[0241] global — common — when it succeeds in acquisition of key:kg3, a security chip 
control section is [ in the key storing field of memory, for example, the 
above-mentioned device management domain ] global — common — global to a 
key:kg1 write-in field — common — key:kg3 are overwritten. The global common key 
which a user device holds is updated by this update process two, Kg2 and Kg3. 
[0242] If [decryption processing using decoder] encryption contents or an encryption 
contents key is the configuration which makes a decoder with the decryption 
processing facility of dedication perform processing, it will become accelerable 
[ processing ]. However, since a decoder has the hard configuration which became 
independent of a security chip, it is necessary to perform the contents key within a 
decoder, and a decryption of contents, after checking the dependability of a decoder. 
Hereafter, decryption processing of the encryption contents using a decoder or an 
encryption contents key is explained with reference to drawing. 
[0243] Drawing explaining a security chip, the contents key in the case of having a 
decoder, and the decryption processing sequence of contents is shown in a user 
device at drawing 30 . 

[0244] A user device has the security chip 210, the memory section 222 which 
consists of a decoder 280, a hard disk, a flash memory, etc., and the user device side 
control section 221 which performs data I/O and various processing run commands to 
the security chip 210, and a decoder 280 and the memory section 222 with high order 
software. 



[0245] The sequence at the time of contents decryption processing is explained. First, 
if the contents use demand which specified contents is inputted into the user device 
side control section 221 by actuation of the input means by the user, the user device 
side control section 221 will search the attribute certificate (AC) corresponding to the 
assignment contents stored in the memory section 222. The attribute certificate (AC) 
extracted by retrieval is transmitted to the security chip 210, and verification 
processing of an attribute certificate (AC) is performed within the security chip 210. 
[0246] If it succeeds in the attribute (certificate AC) verification processing, share 
processing of mutual recognition and a session key will be performed between the 
security chip 210 and a decoder 280. After the security chip 210 after mutual 
recognition is materialized decrypts the encryption contents key picked out from the 
attribute certificate (AC), it re-enciphers a contents key using the session key shared 
with the decoder 280 at the time of mutual recognition, and transmits it to a decoder 
280. The decoder 280 which received the encryption contents key performs a 
decryption of an encryption contents key with the application of a session key, and 
acquires a contents key. 

[0247] Next, the user device side control section 221 searches and takes out the 
encryption contents stored in the memory section 222, and transmits to a decoder 
280. A decoder 280 performs decryption processing with the application of the 
contents key which acquired the inputted encryption contents previously. 
[0248] In the processing which applied the decoder mentioned above, a contents key 
is not used within the security chip 210. Moreover, a decoder decrypts encryption 
contents and carries out the external output of voice or the image data as analog 
output. In addition, only when ID and the authentication method of a decoder to attest 
may be described, and it judges whether the security chip 210 suits the decoder ID 
the decoder was described to be by the attribute certificate (AC) at the time of 
mutual recognition, and an authentication method in an attribute certificate (AC) in 
this case and suits it, a contents key is outputted to a decoder. 
[0249] The processing sequence using a decoder is explained using drawing 31 . In 
drawing 31 , each processing of a security chip, high order software (user device side 
control section), and a decoder is shown from the left. 

[0250] If the contents use demand which specified contents is inputted into high order 
software (user device side control section) by actuation of the input means by the 
user, high order software (user device side control section) will acquire the application 
ID corresponding to assignment contents, and the attribute certificate (AC) 
corresponding to the application ID stored in memory, such as a hard disk, will be 



searched based on Application ID. 

[0251] If it is transmitted to a security chip with the attribute (certificate AC) 
verification processing instruction, a security chip performs verification processing of 
an attribute certificate (AC) and the attribute certificate (AC) extracted by retrieval 
succeeds in the attribute (certificate AC) verification processing, it will output a 
response message to high order software (user device side control section) while a 
security chip picks out an encryption contents key from an attribute certificate (AC) 
and it performs decryption processing. 

[0252] Next, share processing of mutual recognition and a session key is performed 
through high order software (user device side control section) between a security chip 
and a decoder. After the security chip after mutual recognition is materialized 
decrypts the encryption contents key picked out from the attribute certificate (AC), it 
re-enciphers a contents key using the session key shared with the decoder at the 
time of mutual recognition, and transmits it to a decoder. The decoder which received 
the encryption contents key performs a decryption of an encryption contents key with 
the application of a session key, and acquires a contents key. 

[0253] Next, a user device side control section searches and takes out the encryption 
contents stored in memory, and transmits to a decoder. A decoder performs 
decryption processing with the application of the contents key which acquired the 
inputted encryption contents previously. 

[0254] Next, the contents decryption processing using a decoder is explained with 
reference to the flow of drawing 32 . 

[0255] If the contents use demand which specified contents is inputted into high order 
software (user device side control section) by actuation of the input means by the 
user in step S101, it will set to step S102. High order software (user device side 
control section) acquires the application ID corresponding to assignment contents, 
and sets it to step S103. Based on Application ID, the attribute certificate (AC) 
corresponding to the application ID stored in memory, such as a hard disk, is searched. 
In step S104, the attribute certificate (AC) extracted by retrieval is transmitted to a 
security chip with the attribute (certificate AC) verification processing instruction, 
and if a security chip performs verification processing of an attribute certificate (AC) 
in step S105 and it succeeds in the attribute (certificate AC) verification processing, a 
security chip will pick out an encryption contents key from an attribute certificate 
(AC), and it will perform decryption processing. Moreover, in step S106, a response 
message is outputted to high order software (user device side control section). 
[0256] Subsequent processing is stopped when it does not succeed in the attribute 



(certificate AC) verification processing. In a verification success, share processing of 
mutual recognition and a session key is performed through high order software (user 
device side control section) between a security chip and a decoder. In step S108, the 
1st authentication command is specifically published by the security chip from high 
order software (user device side control section). In step S109, high order software 
(user device side control section) receives the response from a security chip, and it 
sets to step S1 10 further. The 2nd authentication command is published by the 
decoder from high order software (user device side control section). In step S1 1 1 , high 
order software (user device side control section) receives the response from a 
decoder, and it sets to step S1 12 further. The 3rd authentication command is 
published by the security chip from high order software (user device side control 
section). By processing whose high order software (user device side control section) 
receives the response from a security chip in step S113, authentication processing of 
the decoder by the security chip is performed. When authentication processing goes 
wrong (it is NG at S1 14), subsequent processing is stopped, and when it succeeds, it 
progresses to step S1 15. 

[0257] In step S115, from high order software (user device side control section), the 
4th authentication command is published by the decoder and high order software 
(user device side control section) receives the response from a decoder in step S1 16. 
By this processing, the success or failure of authentication of the security chip by the 
decoder are judged. When authentication processing is failure (it is NG at S1 17), 
subsequent processing is stopped, and when it succeeds, it progresses to step S1 18. 
[0258] In step S1 18, after a security chip decrypts the encryption contents key 
picked out from the attribute certificate (AC), it carries out re-encryption (S1 18) of 
the contents key using the session key shared with the decoder at the time of mutual 
recognition, and is transmitted to high order software (user device side control 
section) (S1 19). High order software (user device side control section) transmits the 
received encryption contents key to a decoder (S120). 

[0259] The decoder which received the encryption contents key performs a 
decryption of an encryption contents key with the application of a session key, and 
acquires a contents key (S121). High order software (user device side control section) 
searches and (S122) takes out the encryption contents stored in memory, and 
transmits them to a decoder (S123). A decoder performs decryption processing with 
the application of the contents key which acquired the inputted encryption contents 
previously (S124). 

[0260] Thus, in the decryption processing using a decoder, since the contents key 



which mutual recognition between a security chip and a decoder was performed, and 
was enciphered with the session key the condition [ formation of mutual recognition ] 
considered as the configuration outputted to a decoder, decode is performed only in 
the device trusted and just contents use can be secured. 

[0261] As explained to the [use limit of contents] place, various use conditions, such 
as a count of a use limit of the contents which a service provider offers, and a use 
term, are included in the contents use condition related information stored in attribute 
information field attribute certification in the letter [ corresponding to the contents 
which stored the use limit information on contents ]. That is, they are the following 
information. Conditions: The count of available in the count limit of count of expiration 
date information use limit: in the case of information expiration date:time limitation 
which shows [ online use contents, off-line use contents, and ] any of buying-up 
contents, time limitation contents, the count limit contents of online, and the count 
limit contents of off-line they are further [0262] As for the attribute certificate 
corresponding to the contents which buy up and carry out contents and make 
contents use after buying up free, the above-mentioned conditions are set up as 
buying up. The above-mentioned conditions are set up as time limitation, and, as for 
the attribute certificate corresponding to the contents which set up the use period, an 
expiration date is set up. The above-mentioned conditions are set up as a count limit, 
and, as for the attribute certificate corresponding to the contents which set up the 
count limit of use, the set point (count value) is set as the count of a use limit. In 
addition, in count limit processing, after carrying out count verification to the count 
limit of off-line of managing the count of available within a user device, and performing 
contents use, in a service provider, there is a count limit of online of permitting the 
contents use within the predetermined number recorded on the attribute certificate. 
Moreover, there is also a combination limit mode accompanied by both limits of time 
limitation and a count limit. In a user device, contents are used according to these 
modes recorded on the attribute certificate. These concrete processing modes are 
explained hereafter. 

[0263] In order to use contents in a user device, it is necessary to take out an 
encryption contents key from the attribute certification in the letter corresponding to 
the contents used as the candidate for use, to perform decryption processing, and to 
acquire contents key:Kc. It is as having stated previously that there are off-line 
processing performed within the security chip of a device and on-line processing 
which sends an attribute certificate to a service provider and requests decode in 
acquisition processing of this contents key. Also in contents use processing in which 



the use conditions of the contents indicated by the attribute certificate were followed, 
off-line processing which checks use conditions within a user device, and on-line 
processing which needs the check by the service provider occur. According to the 
publication of the attribute information field of an attribute certificate, it determines 
which [ these ] are applied. 

[0264] The use processing flow of the attribute certificate (AC) performed by drawing 
33 with the user device in contents utilization time is shown. Each step of a 
processing flow is explained. 

[0265] A user device will perform format check processing of an attribute certificate 
first, if the attribute certificate corresponding to the contents for use is chosen based 
on Application ID (contents identification information) (S201). A need matter is 
recorded on an attribute certificate and it is whether the expiration date of a 
certificate is effective. If format check processing ends, signature verification will be 
performed in step S202. As explained also in advance, an attribute certificate 
publisher's (for example, service provider) electronic signature is added to the 
attribute certificate, and a user device picks out a public key from an attribute 
certificate publisher's public key certificate, and performs signature verification 
processing (refer to drawing 20 ). In addition, it is desirable to also perform verification 
of the public key certificate used in this case and verification processing of a 
connective public key certificate if needed. In addition, this chain verification may be 
indispensable. 

[0266] In the signature verification processing process of step S202, verification is 
materialized, and when judged with there being no alteration in an attribute certificate, 
it progresses to step S203. On the other hand, when verification is un-materialized 
and is judged by the attribute certificate in the signature verification processing 
process of step S202 to be those with an alteration, it progresses to step S205, and 
processing which applied the attribute certificate is not performed, but it is stopped, 
subsequent processings, i.e., contents use processing. 

[0267] If it is judged with there being no alteration in an attribute certificate and 
progresses to step S203, the contents use condition information in the attribute 
information field in an attribute certificate will be acquired. That is, it is [ online use 
contents, off-line use contents, and ] any of buying-up contents, time limitation 
contents, the count limit contents of online, and the count limit contents of off-line to 
be further. According to this condition, when it is on-line processing of step S204 or is 
off-line, it is judged [ buying up and ] in step S206 whether it is a count limit. 
[0268] In step S204, if judged with it being online use, with having explained using 



drawing 26 previously, similarly, an attribute certificate will be sent to a service 
provider and verification of the use limit information in an attribute certificate will be 
performed. In the case of on-line processing, it is either time limitation or a count limit, 
and a service provider performs processing which acquires such contents use 
condition information from an attribute certificate, and will enable acquisition of a 
contents key if it is the contents use claim in a use limit. If it is the contents use claim 
beyond a use limit, processing which enables acquisition of a contents key will not be 
performed, but the message for which contents use is improper will be transmitted to 
a user device. 

[0269] moreover, when it is judged with it being off-line use in step S204 and is judged 
with it buying up at step S206 and their being contents In an attribute certificate 
Contents key data enciphered by storage public key:SC.Stopub.SP.K corresponding to 
(a service provider SP) corresponding to the storage private key corresponding to SP 
stored in the service provider management domain of the security chip of a user 
device : [SC.Stopub.SP.K (Kc)] is stored. In a user device Decryption processing is 
performed using storage private key SC.Stopri.SP.K corresponding to SP stored in the 
service provider management domain, contents key:Kc is acquired, and contents are 
used by decode of contents. 

[0270] furthermore, when it is judged with it being off-line use in step S204 and is 
judged with their being the contents of a count limit at step S206 Within a user device, 
count management is performed based on the setups of an attribute certificate. After 
performing the propriety judging of contents use, an update process of the count 
management data of contents use which performs decryption processing of the 
encryption contents key stored in the attribute certificate the condition [ acquisition 
of the judgment result that use is possible ], and is managed within a device etc. is 
performed. For this reason, it is necessary to have the management data of the count 
of contents use in a device. 

[0271] Import processing of the count management data of use of step S207 is 
management data generation processing of the count of contents use. In addition, 
import processing of the count management data of use is performed based on an 
attribute certificate. There are a mode which manages the count of contents available 
with the security chip in a user device, and two modes which carry out storing 
management of the count management file at the external memory besides a security 
chip (for example, hard disk), and store only the hash value of management data in the 
memory in a security chip as management mode of the count of contents use. About 
these details, it mentions later. The attribute certificate application completion 



message generation step of step S208 is processing which notifies from a security 
chip that import processing of the above-mentioned count management data of use of 
S207 was completed to the user device besides a security chip. 
[0272] The following distinguishes hereafter the contents use conditions indicated by 
the attribute certificate (AC) like 4 voice, and it explains one by one. 
(A) the count limit contents of online-use time limitation (contents B) online-use — 
the count limit contents of (C) off-line-buying-up (contents D) off-line-use [0273] 
(A) The contents use conditions recorded on online-use time limitation contents **** 
and an attribute certificate are on-line processing, and explain processing from 
acquisition of the attribute certificate in the case of being the contents to which the 
use period was restricted to contents acquisition according to the sequence diagram 
of drawing 34 . 

[0274] The processing sequence shown in drawing 34 has already shown the 
processing in the user device which is receipt ending about encryption contents, and 
is receipt ending about the attribute certificate which stored the use conditions 
corresponding to contents, and an encryption contents key from the service provider, 
and shows processing of the security chip control section in a user device, a user 
device control section (high order software), and a service provider from the left. 
[0275] In drawing 34 , the service provider ID acquisition processing from an attribute 
certificate in case the attribute certificate is stored in the internal memory of a 
security chip, and (b) the maximum upper case (a) The service provider ID acquisition 
processing from an attribute certificate in case the attribute certificate is stored in 
accessible memory at control of the external memory of a security chip, i.e., a user 
device control-section independent, is shown. These (a) and (b) are alternatively 
performed according to the storing location of an attribute certificate. Mutual 
recognition processing of (c) and contents acquisition processing of (d) are performed 
in common. 

[0276] First, it explains from processing of (a). (a1) A user device control section 
requires retrieval of the attribute certificate corresponding to the contents for use of 
a security chip control section. (a2) A security chip control section outputs the list of 
attribute certificates [ finishing / storing in the memory of a chip ] to a user device 
control section, and displays a list by the attached browser in a user (a3) device. (a4) 
A user specifies the attribute certificate (AC) corresponding to use schedule contents 
from the displayed list, and transmits a read-out instruction to a security chip control 
section. (a5) A security chip control section reads the specified attribute certificate 
from an internal memory, outputs it to a user device control section, in a user (a6) 



device, displays an attribute certificate by the attached browser, and acquires the 
service provider identifier in attribute certificate storing data (SP ID). 
[0277] It becomes processing of (b) when the attribute certificate is stored in 
accessible memory by control of the external memory of a security chip, i.e., a user 
device control-section independent. (b1) A user device control section performs a 
search of the attribute certificate corresponding to the contents for use, in a user 
(b2) device, from AC list displayed by the attached browser, it specifies the attribute 
certificate (AC) corresponding to use schedule contents, is beginning to read it (b3), 
displays an attribute certificate, and acquires the service provider identifier (SP ID) in 
attribute (b4) certificate storing data. 

[0278] The service provider identifier (SP ID) acquired by either processing of the 
above (a) and (b) is used in order to acquire information required for mutual 
recognition from a service provider management domain. As mentioned above, the 
password input set up for every service provider is required for access to a service 
provider management domain, and by the password input corresponding to the service 
provider identifier (SP ID) acquired from the attribute certificate, a user performs 
access to a service provider management domain, and performs mutual recognition 
processing between the security chip shown in (c1) of drawing 34 , and a service 
provider. 

[0279] This mutual recognition processing is performed as mutual recognition 
processing by TLS1.0 processing of drawing 16 explained previously, or other methods, 
for example, a public key system. In this mutual recognition processing, verification of 
a mutual public key certificate is made and the public key certificate to a root 
certificate authority (CA) is verified continuously if needed. In this authentication 
processing, a security chip and a support center share a session key (Kses). 
Formation of mutual recognition performs [ next ] the processing shown in drawing 34 
(d), i.e., contents acquisition processing. 

[0280] (d1) A user checks the authority information on the attribute certificate 
displayed by the browser of attachment of a user device (contents use conditions), 
and outputs the contents use demand which applied the attribute certificate to a 
security chip. The contents use conditions recorded on the attribute certificate in this 
example are online time limitation. 

[0281] (d2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) application demand from a user 
device control section is received. The check of authority information (contents use 
conditions), a format check, and signature verification processing are included in 



verification processing. Signature verification processing is performed according to 
the same sequence as the processing flow of drawing 20 explained previously, for 
example. 

[0282] Furthermore, it is desirable for the control section of a security chip to acquire 
the public key certificate linked according to the public key certificate information of 
AC holder in an attribute certificate (AC), and to verify a public key certificate if 
needed. For example, when the reliability of the publisher of an attribute certificate 
(AC) is uncertain, the judgment of whether to have the public key certificate of a 
certificate authority justly is attained by verifying the public key certificate of the 
publisher of an attribute certificate (AC). In addition, as the public key certificate 
mentioned above, when hierarchy organization is being made, it is desirable to perform 
to verification of the public key certificate which followed the path on the high order, 
and performed a chain of verification, and the root certificate authority (CA) published. 
In addition, this chain verification may be indispensable. 

[0283] (d3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, by it, the control section of a security chip 
will send an attribute certificate to a service provider. It is recorded on an attribute 
certificate that they are online time limitation contents as use conditions, and 
expiration date data are stored in it. Furthermore, the data of the contents key 
enciphered by private key:SP.Sto.K which a service provider holds, i.e., [SP.Sto.K], 
(Kc) are stored. 

[0284] (d4) The service provider which received the attribute certificate from the 
security chip performs signature verification processing of an attribute certificate. 
Moreover, it is desirable in this case to verify continuously the public key certificate 
linked to an attribute certificate and its high order public key certificate. In addition, 
this chain verification may be indispensable. By these verification processings, a 
check of the justification of an attribute certificate checks the use condition data and 
expiration date data which were stored in the attribute certificate. The contents key 
which will be applied to decode of the contents stored in an attribute certification in 
the letter if judged with it being the contents use demand within the expiration date as 
use conditions currently recorded on the attribute certificate: Perform decode of 
encryption data [ of Kc ]: [SP.Sto.K (Kc)]. 

[0285] A service provider performs decryption processing of encryption contents key: 
[SP.Sto.K (Kc)] stored in the attribute certificate using private key:SP.Sto.K which 
self owns, and takes out contents key:Kc. Furthermore, the taken-out contents key: 
Encipher by the session key (Kses) which generated Kc in previous mutual recognition 



processing, and transmit to the security chip of a user device. 
[0286] (d5) If the contents key enciphered by the session key from the service 
provider, i.e., [Kses], (Kc) is received, the control section of a security chip will 
perform decryption processing using the session key held at the time of mutual 
recognition, and will acquire contents key:Kc. Contents key: If it succeeds in 
acquisition of Kc, a security chip control section will notify that decode preparation of 
contents was completed to a user device control section. 

[0287] (d6) Next, a user device control section acquires the encryption contents [Kc 
(Content)] which should be decoded with the application of the acquired contents key 
from the memory in a security chip through the memory (for example, hard disk) or the 
security chip control section in a user device. Furthermore, the acquired encryption 
contents are transmitted to a security chip, decryption processing which applied 
contents key:Kc to encryption contents within the security (d7) chip is performed, the 
contents obtained as a decryption processing result are outputted to a user device 
control section, and a user (d8) device acquires contents. The contents key which 
acquired the control section of a security (d9) chip by decryption processing after 
these processings were completed: Cancel Kc and contents (Content). 
[0288] Check processing of the use period based on the attribute certificate (AC) by 
the service provider is performed by these processings. Only when it is within the 
restricted use period, in a security chip, in the condition which can be decoded, it is 
re-enciphered and contents key:Kc is sent. Decode of contents with the contents key 
which the contents key was acquired in the security chip and acquired is performed, 
and contents use is attained in a user device. 

[0289] In addition, as a distribution gestalt of the contents distribution to the user 
device from a service provider, or an attribute certificate (AC:Attribute Certificate), 
any gestalt of the gestalt performed based on the demand to the service provider 
from a user side and the gestalt (push type model) of the so-called push type which 
transmits to a target from a service provider on the other hand to the user who has 
made the subscriber contract regardless of the existence of a demand of a user is 
possible. In a push type model, a service provider will draw up and distribute the 
attribute certificate for target users (AC) beforehand. 

[0290] (B) The count limit contents of online-use, next the contents use conditions 
recorded on the attribute certificate are on-line processing, and explain processing 
from acquisition of the attribute certificate in the case of being the contents to which 
the count of use was restricted to contents acquisition according to the sequence 
diagram of drawing 35 . 



[0291] The processing sequence shown in drawing 35 has already shown the 
processing in the user device which is receipt ending about encryption contents, and 
is receipt ending about the attribute certificate which stored the use conditions 
corresponding to contents, and an encryption contents key from the service provider 
like the processing sequence of drawing 34 explained previously, and shows 
processing of the security chip control section in a user device, a user device control 
section (high order software), and a service provider from the left. 
[0292] The service provider ID acquisition processing from an attribute certificate in 
case, as for the maximum upper case (a), the attribute certificate is stored in the 
internal memory of a security chip during the processing shown in drawing 35 , (b) 
shows the service provider ID acquisition processing from an attribute certificate in 
case the attribute certificate is stored in accessible memory at control of the external 
memory of a security chip, i.e., a user device control-section independent. These (a) 
and (b) are alternatively performed according to the storing location of an attribute 
certificate. Since each processing of (a) and (b) and mutual recognition processing of 
(c) are the same as the processing in the case of the online time limitation explained 
with reference to drawing 34 , explanation is omitted. Formation of the mutual 
recognition of (c) performs [ next ] the processing shown in drawing 35 (d), i.e., 
contents acquisition processing. 

[0293] (d1) A user checks the authority information on the attribute certificate 
displayed by the browser of attachment of a user device (contents use conditions), 
and outputs the contents use demand which applied the attribute certificate to a 
security chip. The contents use conditions recorded on the attribute certificate in this 
example are the count limits of online. 

[0294] (d2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) application demand from a user 
device control section is received. The check of authority information (contents use 
conditions), a format check, and signature verification processing are included in 
verification processing. Signature verification processing is performed according to 
the same sequence as the processing flow of drawing 20 explained previously, for 
example. As for the control section of a security chip, in this verification processing, it 
is desirable to perform to verification of the public key certificate which followed on 
the high order, and performed a chain of verification, and the root certificate authority 
(CA) published from the public key certificate linked according to the public key 
certificate information of AC holder in an attribute certificate (AC). In addition, this 
chain verification may be indispensable. 



[0295] (d3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, by it, the control section of a security chip 
will send an attribute certificate to a service provider. It is recorded on an attribute 
certificate that they are the count limit contents of online as use conditions, and the 
count of a use limit is stored in it. Furthermore, the data of the contents key 
enciphered by private key:SP.Sto.K which a service provider holds, i.e., [SP.Sto.K], 
(Kc) are stored. 

[0296] (d4) The service provider which received the attribute certificate from the 
security chip performs signature verification processing of an attribute certificate. 
Moreover, it is desirable in this case to verify continuously the public key certificate 
linked to an attribute certificate and its high order public key certificate. In addition, 
this chain verification may be indispensable. By these verification processings, a 
check of the justification of an attribute certificate checks the use condition data and 
the count of a use limit which were stored in the attribute certificate. The count of 
available is stored in the database in a service provider, and judges whether it is 
contents use in the count limit recorded on the attribute certificate with reference to 
the management data in a database in a service provider. 

[0297] The contents key which will be applied to decode of the contents stored in an 
attribute certification in the letter if judged with it being contents use in the count 
limit recorded on the attribute certificate: Perform decode of encryption data [ of 
Kc ]: [SP.Sto.K (Kc)]. A service provider performs decryption processing of encryption 
contents key: [SP.Sto.K (Kc)] stored in the attribute certificate using private 
key:SP.Sto.K which self owns, and takes out contents key:Kc. 
[0298] Furthermore, a service provider updates the count management data of 
contents use in a database, and performs processing which carries out 1 decrement of 
the count of available to which the contents for use correspond. Furthermore, the 
contents key taken out in the service provider: Encipher by the session key (Kses) 
which generated Kc in previous mutual recognition processing, and transmit to the 
security chip of a user device. 

[0299] (d5) If the contents key enciphered by the session key from the service 
provider, i.e., [Kses], (Kc) is received, the control section of a security chip will 
perform decryption processing using the session key held at the time of mutual 
recognition, and will acquire contents key:Kc. Contents key: If it succeeds in 
acquisition of Kc, a security chip control section will notify that decode preparation of 
contents was completed to a user device control section. 

[0300] (d6) Next, a user device control section acquires the encryption contents [Kc 



(Content)] which should be decoded with the application of the acquired contents key 
from the memory in a security chip through the memory (for example, hard disk) or the 
security chip control section in a user device. Furthermore, the acquired encryption 
contents are transmitted to a security chip, decryption processing which applied 
contents key:Kc to encryption contents within the security (d7) chip is performed, the 
contents obtained as a decryption processing result are outputted to a user device 
control section, and a user (d8) device acquires contents. The contents key which 
acquired the control section of a security (d9) chip by decryption processing after 
these processings were completed: Cancel Kc and contents (Content). 
[0301] Check processing of the count of contents use based on the attribute 
certificate (AC) by the service provider is performed by these processings. Only when 
it is in the restricted count of use, in a security chip, in the condition which can be 
decoded, it is re-enciphered and contents key:Kc is sent. Decode of contents with the 
contents key which the contents key was acquired in the security chip and acquired is 
performed, and contents use is attained in a user device. 

[0302] In addition, as a distribution gestalt of the contents distribution to the user 
device from a service provider, or an attribute certificate (AC:Attribute Certificate), 
any gestalt of the gestalt performed based on the demand to the service provider 
from a user side and the gestalt (push type model) of the so-called push type which 
transmits to a target from a service provider on the other hand to the user who has 
made the subscriber contract regardless of the existence of a demand of a user is 
possible. In a push type model, a service provider will draw up and distribute the 
attribute certificate for target users (AC) beforehand. 

[0303] (C) Off-line-buying-up contents, next the contents use conditions recorded 
on the attribute certificate are off-line processing, and explain processing from 
acquisition of the attribute certificate in the case of being buying-up contents to 
contents acquisition according to the sequence diagram of drawing 36 . 
[0304] The processing sequence shown in drawing 36 has already shown the 
processing in the user device which is receipt ending about encryption contents, and 
is receipt ending about the attribute certificate which stored the use conditions 
corresponding to contents, and an encryption contents key from the service provider 
like drawing 34 explained previously and the processing sequence of drawing 35 , and 
shows processing of the security chip control section in a user device, a user device 
control section (high order software), and a service provider from the left. 
[0305] The service provider ID acquisition processing from an attribute certificate in 
case, as for the maximum upper case (a), the attribute certificate is stored in the 



internal memory of a security chip during the processing shown in drawing 36 , (b) 
shows the service provider ID acquisition processing from an attribute certificate in 
case the attribute certificate is stored in accessible memory at control of the external 
memory of a security chip, i.e., a user device control-section independent. These (a) 
and (b) are alternatively performed according to the storing location of an attribute 
certificate. Since each processing of (a) and (b) is the same as the processing in the 
case of the online time limitation explained with reference to drawing 34 , explanation 
is omitted. Acquisition of a service provider ID of either processing of (a) and (b) 
performs [ next ] the processing shown in drawing 36 (c), i.e., contents acquisition 
processing, by it. 

[0306] (c1) A user checks the authority information on the attribute certificate 
displayed by the browser of attachment of a user device (contents use conditions), 
and outputs the contents use demand which applied the attribute certificate to a 
security chip. The contents use conditions recorded on the attribute certificate in this 
example are off-line buying up. 

[0307] (c2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) application demand from a user 
device control section is received. The check of authority information (contents use 
conditions), a format check, and signature verification processing are included in 
verification processing. Signature verification processing is performed according to 
the same sequence as the processing flow of drawing 20 explained previously, for 
example. As for the control section of a security chip, in this verification processing, it 
is desirable to perform to verification of the public key certificate which followed on 
the high order, and performed a chain of verification, and the root certificate authority 
(CA) published from the public key certificate linked according to the public key 
certificate information of AC holder in an attribute certificate (AC). In addition, this 
chain verification may be indispensable. 

[0308] (c3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, a security chip control section will take out 
encryption contents key: [SC.Stopub.SP.K (Kc)] stored in the attribute certificate, will 
perform decryption processing with the application of storage private 
key:SC.Stopri.SP.K corresponding to SP stored in the service provider management 
domain, and will acquire contents key:Kc by it. Contents key: If it succeeds in 
acquisition of Kc, a security chip control section will notify that decode preparation of 
contents was completed to a user device control section. 

[0309] (c4) Next, a user device control section acquires the encryption contents [Kc 



(Content)] which should be decoded with the application of the acquired contents key 
from the memory in a security chip through the memory (for example, hard disk) or the 
security chip control section in a user device. Furthermore, the acquired encryption 
contents are transmitted to a security chip, decryption processing which applied 
contents key:Kc to encryption contents within the security (c5) chip is performed, the 
contents obtained as a decryption processing result are outputted to a user device 
control section, and a user (c6) device acquires contents. The contents key which 
acquired the control section of a security (c7) chip by decryption processing after 
these processings were completed: Cancel Kc and contents (Content). 
[0310] Decode of contents with the contents key which check processing of being the 
buying-up contents based on an attribute certificate (AC) was performed, contents 
key:Kc was decoded in the security chip by these processings, and the contents key 
was acquired, and was acquired is performed, and contents use is attained in a user 
device. 

[0311] In addition, although considered as the configuration which applied the public 
key cryptosystem, used storage public key:SC.Stopub.SP.K corresponding to SP for 
encryption of a contents key, and used storage private key:SC.Stopri.SP.K 
corresponding to SP for decode of a contents key in the above-mentioned example of 
a configuration It is also possible to apply a common key system, and when applying a 
common key system, storage key (common key):SC.Sto.SP.K corresponding to SP is 
used for processing of the both sides of encryption of a contents key and a decryption. 
In this case, storage key (common key):SC.Sto.SP.K corresponding to SP is stored in 
the service provider management domain of a service provider where the memory of a 
security chip corresponds. 

[0312] In addition, as a distribution gestalt of the contents distribution to the user 
device from a service provider, or an attribute certificate (AC:Attribute Certificate), 
any gestalt of the gestalt performed based on the demand to the service provider 
from a user side and the gestalt (push type model) of the so-called push type which 
transmits to a target from a service provider on the other hand to the user who has 
made the subscriber contract regardless of the existence of a demand of a user is 
possible. In a push type model, a service provider will draw up and distribute the 
attribute certificate for target users (AC) beforehand. 

[0313] (D) The count limit contents of off-line-use, next the contents use conditions 
recorded on the attribute certificate are off-line processing, and explain processing 
from acquisition of the attribute certificate in the case of being the restricted 
contents which are a count of use to contents acquisition. When the use conditions of 



an attribute certificate are the contents which have a count limit by off-line use, in 
order to perform count management within a user device based on the setups of an 
attribute certificate, it is necessary to have the management data of the count of 
contents use in a device. Possession processing of the management data of the count 
of contents use is import processing of the count management data of use. 
[0314] (D-1) import **** — explain import processing of the count management data 
of use first. There are a mode which manages the count of contents available with the 
security chip in a user device, and two modes which carry out storing management of 
the count management file at the external memory besides a security chip (for 
example, hard disk), and store only the hash value of management data in the memory 
in a security chip as management mode of the count of contents use. 
[0315] With reference to drawing 37 , the import processing sequence of the count 
management data of use at the time of considering as the mode which manages the 
count of contents available with the security chip in a user device is explained first. 
Processing of the security chip control section in a user device, a user device control 
section (high order software), and a service provider is shown from the left. The 
security chip accompanying contents purchase processing and the mutual recognition 
between service providers are materialized, and the processing sequence of drawing 
37 has already shown the processing after issue processing of the attribute certificate 
corresponding to the purchase contents to a security chip from the service provider. 
Here, it is recorded that the attribute certificates which a service provider publishes 
are the count limit contents of use in off-line use as contents use conditions, and the 
count of a contents use limit is recorded. 

[0316] (1) If an attribute certificate is published and transmitted from a service 
provider, the control section of (2) security chip will perform verification processing of 
an attribute certificate. The check of authority information (contents use conditions), 
a format check, and signature verification processing are included in verification 
processing. Signature verification processing is performed according to the same 
sequence as the processing flow of drawing 20 explained previously, for example. As 
for the control section of a security chip, in this verification processing, it is desirable 
to perform to verification of the public key certificate which followed on the high order, 
and performed a chain of verification, and the root certificate authority (CA) published 
from the public key certificate linked according to the public key certificate 
information of AC holder in an attribute certificate (AC). In addition, this chain 
verification may be indispensable. 

[0317] (3) If the control section of a security chip judges with the contents use 



conditions recorded on the attribute certificate being the count limit contents of 
off-line use, it will acquire each data of the application ID corresponding to a contents 
identifier, an attribute certificate (AC) serial number, and the count of a contents use 
limit from an attribute certificate. Furthermore, each data of user ID and a service 
provider ID inputted by the user at the time of purchase processing of contents is 
acquired through a user device control section, and such acquired applications ID, an 
attribute certificate (AC) serial number, and the count management data of contents 
use corresponding to each data of user ID verify whether it is registered to the 
service provider management domain of the memory in a security chip. In addition, 
since user ID etc. is held when the user logs in to a user device, a user device may 
transmit user ID and a service provider ID instead of a user inputting. 
[0318] As mentioned above in the memory of a security chip, a service provider 
management domain will be set up for every registered service provider, and the count 
management data of contents use will be registered into the management domain. The 
example of a configuration of the count management data of contents use set as 
drawing 38 in the service provider management domain of the memory in a security 
chip is shown. 

[0319] As shown in drawing 38 , AC serial (AC Serial#n) and the further remaining 
count data (Count#n) of available which are the application ID as a contents identifier 
(App.ID#n) and the identifier of a corresponding attribute certificate (AC) are matched 
and stored in a service provider management domain for every service provider ID and 
user ID. Even if it is the same contents, it has data composition which enabled the 
count count of use based on a different attribute certificate for every use user. 
[0320] It returns to drawing 37 and explanation is continued about the sequence of 
import processing of the count management data of use. (3) The application ID 
corresponding to the contents identifier which acquired the control section of a 
security chip from the attribute certificate Each data of an attribute certificate (AC) 
serial number and the count of a contents use limit, The count management data of 
contents use corresponding to each data of user ID and a service provider ID inputted 
by the user If it checks that verify whether it is registered to the service provider 
management domain of the memory in a security chip, and the count management 
data of contents use is not registered into it (4) Additional registration of the count 
management data of contents use is carried out in a service provider management 
domain, an attribute certificate received message is generated after termination of (5) 
addition registration, and it transmits to a service provider. 

[0321] In the example of drawing 37 , as for the attribute certificate (AC) received 



from the service provider, each data of count:of application ID:0001 attribute 
(certificate AC) serial:1345 contents use limit 5 is recorded, and user input data is 
user ID:6737 service-provider ID:5678. 

[0322] The control section of a security chip verifies whether the count management 
data of contents use corresponding to these data is in the service provider 
management domain where it corresponds in memory. In the data of SP management 
domain data (before updating) shown in drawing 37 , application ID:0001 and the data 
corresponding to attribute (certificate AC) serial:1345 do not exist as service provider 
ID:5678 and count management data of contents use corresponding to user ID:6737. 
[0323] Therefore, processing which newly adds the count management data of 
contents use corresponding to the attribute certificate received from the service 
provider this time as service provider ID:5678 and count management data of 
contents use corresponding to user ID:6737 is performed. Consequently, the count of 
a contents use limit which application ID:0001 and the count management data of 
attribute (certificate AC) serial:1345 were added, and was recorded by the received 
attribute certificate as a count of available into the data of SP management-domain 
data (after updating) shown in the lower berth of drawing: 5 is set up. 
[0324] Renewal of data which this count management data of contents use is referred 
to, carries out 1 decrement of the count of available to the utilization time of contents 
for every use, and is set to 5->4->3->2->1->0 is performed, the contents use after 
the count of available was set to 0 is refused, and contents use within the count of a 
use limit recorded on the attribute certificate is attained. About this contents use 
processing, it mentions later. 

[0325] In addition, when the application ID of the attribute certificate received from 
the service provider and the same data as an attribute certificate (AC) serial are 
registered as count management data of contents use in the service provider ID which 
already corresponds, and the service provider management domain of user ID, it 
judges with it being issue of the duplicate attribute certificate, and additional 
registration of the count management data of contents use based on the attribute 
certificate is not performed. 

[0326] Moreover, although it is the same as that of the application ID of the attribute 
certificate received from the service provider, when the data with which attribute 
certificate (AC) serials differ are registered as count management data of contents 
use in the service provider ID which already corresponds, and the service provider 
management domain of user ID, it judges with it being the attribute certificate which 
enables new use of the same contents based on a different attribute certificate, and 



additional registration of the count management data of contents use based on the 
attribute certificate is performed. 

[0327] That is, as count management data of contents use in the same service 
provider ID and the service provider management domain of the same user ID, even if 
it is the case where the data of application ID:0001 and countof the AC serial:0001 
remaining contents use 2 exist, it is already [0328]. Application ID: 0001 AC serial: It 
remains 0002 and additional registration of the new management data of countof 
contents use 5 is carried out. 

[0329] The import processing flow of the count management data of use performed 
within the security chip at the time of considering as the mode which manages the 
count of contents available with the security chip in a user device to drawing 39 is 
shown. Each step is explained. 

[0330] First, in step S221, Application ID, the count of a use limit, and an attribute 
certificate serial number are taken out from an attribute certificate (finishing 
[ verification ]). In step S222, it searches whether the count management data of the 
same application ID is having been stored in the attribute certificate in a service 
provider management domain [ finishing / a setup in the memory in a security chip ]. 
[0331] The count of a contents use limit recorded on the attribute certificate which 
progressed to step S225 and was received at step S223 according to the attribute 
certificate as application ID:nnnn, attribute (certificate AC) seriahmmmm, and a count 
of available when judged with there being no registration of the count management 
data of the same application ID: Set up x and perform count management data 
registration of use. 

[0332] On the other hand, in step S223, when judged with the count management data 
of the same application ID being registered Progress to step S224 and it judges 
whether the count management data which is in agreement with the attribute 
certificate (AC) serial acquired from the attribute certificate further is registered to 
the service provider management domain in memory. When registered, it judges with it 
being duplication processing to the same attribute certificate, and new data 
registration is not performed but ends processing. When it judges with the count 
management data which is in agreement with the attribute certificate (AC) serial 
acquired from the attribute certificate on the other hand not being registered to the 
service provider management domain in memory The count of a contents use limit 
recorded on the attribute certificate which progressed to step S225 and was received 
according to the attribute certificate as application ID:nnnn, attribute (certificate AC) 
seriakmmmm, and count data of available: Set up x and register the count 



management data of use. 

[0333] Next, the import processing sequence of the count management data of use at 
the time of carrying out storing management of the count management file at the 
external memory besides a security chip (for example, hard disk), and considering as 
the processing mode which stores only the hash value of management data in the 
memory in a security chip with reference to drawing 40 , is explained. Processing of 
the security chip control section in a user device, a user device control section (high 
order software), and a service provider is shown from the left. The security chip 
accompanying contents purchase processing and the mutual recognition between 
service providers are materialized, and the processing sequence of drawing 40 has 
already shown the processing after issue processing of the attribute certificate 
corresponding to the purchase contents to a security chip from the service provider. 
Here, it is recorded that the attribute certificates which a service provider publishes 
are the count limit contents of use in off-line use as contents use conditions, and the 
count of a contents use limit is recorded. 

[0334] It is the configuration of utilizing effectively the memory area where it was 
restricted in the security chip, and this processing mode carries out storing 
management of the real data file of count management data at the external memory 
besides a security chip (for example, hard disk), it is managing the hash (Hash) value of 
this external management file information inside a security chip, and makes it possible 
to verify the alteration of external management file information. A Hash Function is a 
function which considers a message as an input, compresses this into the data of 
predetermined bit length, and is outputted as a hash value. It is difficult for a Hash 
Function to predict an input from a hash value (output), and when 1 bit of the data 
inputted into the Hash Function changes, discovering different input data which many 
bits of a hash value change and has the same hash value has the difficult description. 
As a Hash Function, MD4, MD5, SHA-1 , etc. may be used and DES-CBC may be used. 
In this case, MAC used as a final output value serves as a hash value. 
[0335] The processing sequence shown in drawing 40 is explained. (1) If an attribute 
certificate is published and transmitted from a service provider, the control section of 
(2) security chip will perform verification processing of an attribute certificate. The 
check of authority information (contents use conditions), a format check, and 
signature verification processing are included in verification processing. Signature 
verification processing is performed according to the same sequence as the 
processing flow of drawing 20 explained previously, for example. As for the control 
section of a security chip, in this verification processing, it is desirable to perform to 



verification of the public key certificate which followed on the high order, and 
performed a chain of verification, and the root certificate authority (CA) published 
from the public key certificate linked according to the public key certificate 
information of AC holder in an attribute certificate (AC). In addition, this chain 
verification may be indispensable. 

[0336] If the control section of a security chip judges with the contents use 
conditions recorded on the attribute certificate being the count limit contents of 
off-line use, it will perform read-out processing of the count management file from 
external memory. A count management file is in HDD which a user device control 
section manages by a diagram, and a count management file is read in (3) user device 
control section, and it is outputted to a security chip. Even if this read-out object is 
management file all data, it may be only data about the service provider corresponding 
to contents. 

[0337] Next, the control section of a security chip develops the count management 
file which received from (4) user device control section to RAM in a security chip, and 
calculates a hash value based on expansion data. Count management data has the 
field configuration which stored two or more count management data matched with a 
service provider ID and user ID. The hash value is generated and stored in the service 
provider management domain in the memory of a security chip to the field data 
matched with a service provider ID and user ID. 

[0338] It calculates a hash value by the control section of a security chip receiving 
from a user device control section, and extracting the field data corresponding to the 
service provider ID specified by the user and user ID from the count management file 
developed to RAM, and compares the calculated value with the hash value stored in 
the service provider management domain of the memory in a security chip. If a 
calculation hash value and a storing hash value are in agreement, it will judge with 
there being no alteration in data, and will progress to the next processing. 
[0339] The corresponding field stored in the (service-provider SP) management 
domain where a hash value is computed based on service-provider ID:5678 of RAM 
expansion data, and the field data of user-ID:6737, and it corresponds in a security 
chip in the example of drawing, service-provider ID:5678 [ i.e., ], user ID: It will 
compare with hash value:290a of 6737. 

[0340] (5) Transmit the notice which shows the congruous purports when a hash 
value is in agreement to a user device control section, and when coincidence is not 
obtained, transmit an error message to a user device control section. (6) Next, the 
control section of a security chip acquires each data of the application ID 



corresponding to a contents identifier, an attribute certificate (AC) serial number, and 
the count of a contents use limit from an attribute certificate. Furthermore, each data 
of user ID and a service provider ID inputted by the user at the time of purchase 
processing of contents is acquired through a user device control section, such 
acquired applications ID, an attribute certificate (AC) serial number, and the count 
management data of contents use corresponding to each data of user ID receive from 
a user device control section, and it verifies whether it is registered to the count 
management file developed to RAM. 

[0341] If it checks that the count management data of contents use is not registered, 
the count management data of use of (7) contents is picked out from an attribute 
certificate (AC), additional registration is carried out at the count management file 
developed to RAM, the new hash value based on (8) additional data is calculated, and 
it stores in the corresponding field stored in the (service provider SP) management 
domain where it corresponds in (9) security chip. (10) After termination of additional 
registration, transmit to a user device with the count management file which updated 
the attribute certificate received message, and (11) user device stores the count 
management file which received in a hard disk. 

[0342] In the example of drawing 40 , as for the attribute certificate (AC) received 
from the service provider, each data of countof application ID:0001 attribute 
(certificate AC) serial:1345 contents use limit 5 is recorded, and user input data is 
user ID:6737 service-provider ID:5678. 

[0343] The control section of a security chip verifies whether the count management 
data of contents use corresponding to these data is registered to the count 
management file developed to RAM. In the data in [ RAM ] SC of the maximum upper 
case shown in drawing 40 , application ID:0001 and the data corresponding to attribute 
(certificate AC) serial:1345 do not exist as service provider ID:5678 and count 
management data of contents use corresponding to user ID:6737. 
[0344] Therefore, processing which newly adds the count management data of 
contents use corresponding to the attribute certificate received from the service 
provider this time as service provider ID:5678 and count management data of 
contents use corresponding to user ID:6737 is performed. Consequently, the count of 
a contents use limit which application ID:0001 and the count management data of 
attribute (certificate AC) serial:1345 were added, and was recorded by the received 
attribute certificate as a count of available into the data in [ RAM ] SC shown in the 
middle of drawing: 5 is set up. 

[0345] Furthermore, service-provider ID:5678, user ID: A hash value is computed 



based on the field data corresponding to 6737. In the example of drawing, the hash 
value before renewal of data is 290a, the hash value after renewal of data is 8731 , and 
hash value:8731 of SP management domain of the bottom of drawing will be stored as 
an updating value. 

[0346] While renewal of data which this count management data of contents use is 
referred to, carries out 1 decrement of the count of available to the utilization time of 
contents for every use, and is set to 5->4->3->2->1->0 is performed, a new hash 
value will be computed based on updating data, and an update process will be 
performed. About this contents use processing, it mentions later. 
[0347] In addition, when the application ID of the attribute certificate received from 
the service provider and the same data as an attribute certificate (AC) serial are 
registered as the service providers ID and the count management data of contents 
use of the field of user ID with which the count management file which already 
received from the user device and was developed to RAM corresponds, it judges with 
it being issue of the duplicate attribute certificate, and additional registration of the 
count management data of contents use based on the attribute certificate is not 
performed. 

[0348] Moreover, although it is the same as that of the application ID of the attribute 
certificate received from the service provider The data with which attribute 
certificate (AC) serials differ already receive from a user device. In being registered as 
the service provider ID and the count management data of contents use of the field of 
user ID with which the count management file developed to RAM corresponds It 
judges with it being the attribute certificate which enables new use of the same 
contents based on a different attribute certificate, and the additional registration of 
the count management data of contents use based on the attribute certificate and a 
hash value update process are performed. 

[0349] Storing management of the count management file is carried out at the 
external memory besides a security chip (for example, hard disk), and the import 
processing flow of the count management data of use at the time of considering as 
the processing mode which stores only the hash value of management data in the 
memory in a security chip is shown in drawing 41 . Each step is explained. 
[0350] First, in step S241, a count management file is read from external memory, the 
hash value based on the field data specified based on a service provider ID and user 
ID is computed in step S242, and it verifies whether it is in agreement with a 
calculation hash value and a hash value [ finishing / storing in the service provider 
management domain in the memory of a security chip ] (S243). When not in agreement, 



it judges with the count management file read from external memory being altered, and 
error processing, for example, subsequent processing, is stopped. 
[0351] A hash value is in agreement, when it judges with the count management file 
read from external memory not being altered, it progresses to step S244 and 
Application ID, the count of a use limit, and an attribute certificate serial number are 
taken out from an attribute certificate (finishing [ verification ]). Next, in step S245, it 
receives from a user device control section, and searches whether the count 
management data of the same application ID as what was stored in the attribute 
certificate is in the count management file developed to RAM. 

[0352] The count of a contents use limit recorded on the attribute certificate which 
progressed to step S247 and was received at step S246 according to the attribute 
certificate as application ID:nnnn, attribute (certificate AC) seriahmmmm, and a count 
of available when judged with there being no registration of the count management 
data of the same application ID: Set up x and register the count management data of 
use. 

[0353] On the other hand, in step S246, when judged with registration of the count 
management data of the same application ID being registered Progress to step S251 
and it judges whether the count management data which is in agreement with the 
attribute certificate (AC) serial acquired from the attribute certificate further is 
registered to the count management file developed to RAM. When registered, it judges 
with it being duplication processing to the same attribute certificate, and new data 
registration is not performed but ends processing. When it judges with it not being 
registered to the count management file which the count management data which is in 
agreement with the attribute certificate (AC) serial acquired from the attribute 
certificate on the other hand developed to RAM The count of a contents use limit 
recorded on the attribute certificate which progressed to step S247 and was received 
according to the attribute certificate as application ID:nnnn, attribute (certificate AC) 
seriahmmmm, and a count of available: Set up x and perform count management data 
registration of use. 

[0354] In step S247, if new count management data is written in the count 
management file developed to RAM according to an attribute certificate, in step S248, 
a new hash value is calculated based on data including new additional data, and a new 
hash value is stored in the corresponding field stored in the (service provider SP) 
management domain where it corresponds in a security chip. Furthermore, in step 
S249, renewal of the count management file stored in external memory (for example, 
hard disk) based on the updated count management file is performed. 



[0355] Next, the contents use conditions recorded on the attribute certificate are 
off-line processing, and processing from acquisition of the attribute certificate in the 
case of being the count limit contents of use to contents acquisition is explained 
according to the sequence diagram of drawing 42 . 

[0356] The processing sequence shown in drawing 42 has already shown the 
processing in the user device which is receipt ending about encryption contents, and 
is receipt ending about the attribute certificate which stored the use conditions 
corresponding to contents, and an encryption contents key from the service provider 
like drawing 34 explained previously, drawing 35 , and the processing sequence of 
drawing 36 , and shows processing of the security chip control section in a user 
device, a user device control section (high order software), and a service provider 
from the left. 

[0357] The service provider ID acquisition processing from an attribute certificate in 
case, as for the maximum upper case (a), the attribute certificate is stored in the 
internal memory of a security chip during the processing shown in drawing 42 , (b) 
shows the service provider ID acquisition processing from an attribute certificate in 
case the attribute certificate is stored in accessible memory at control of the external 
memory of a security chip, i.e., a user device control-section independent. These (a) 
and (b) are alternatively performed according to the storing location of an attribute 
certificate. Since each processing of (a) and (b) is the same as the processing in the 
case of the online time limitation explained with reference to drawing 34 , explanation 
is omitted. Acquisition of a service provider ID of either processing of (a) and (b) 
performs [ next ] the processing shown in drawing 42 (c), i.e., contents acquisition 
processing, by it. 

[0358] (c1) A user checks the authority information on the attribute certificate 
displayed by the browser of attachment of a user device (contents use conditions), 
and outputs the contents use demand which applied the attribute certificate to a 
security chip. The contents use conditions recorded on the attribute certificate in this 
example are the count limits of off-line use. 

[0359] (c2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) application demand from a user 
device control section is received. The check of authority information (contents use 
conditions), a format check, and signature verification processing are included in 
verification processing. Signature verification processing is performed according to 
the same sequence as the processing flow of drawing 20 explained previously, for 
example. As for the control section of a security chip, in this verification processing, it 



is desirable to perform to verification of the public key certificate which followed on 
the high order, and performed a chain of verification, and the root certificate authority 
(CA) published from the public key certificate linked according to the public key 
certificate information of AC holder in an attribute certificate (AC). In addition, this 
chain verification may be indispensable. 

[0360] (c3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, by it, a security chip control section will 
perform an update process of count management data. About the detail of an update 
process of count management data, it mentions later. Furthermore, a security chip 
control section takes out encryption contents key: [SC.Stopub.SP.K (Kc)] stored in 
the attribute (c4) certificate, performs decryption processing with the application of 
storage private key:SC.Stopri.SP.K corresponding to SP stored in the service provider 
management domain, and acquires contents key:Kc. Contents key: If it succeeds in 
acquisition of Kc, a security chip control section will notify that decode preparation of 
contents was completed to a user device control section. 

[0361] (c5) Next, a user device control section acquires the encryption contents [Kc 
(Content)] which should be decoded with the application of the acquired contents key 
from the memory in a security chip through the memory (for example, hard disk) or the 
security chip control section in a user device. Furthermore, the acquired encryption 
contents are transmitted to a security chip, decryption processing which applied 
contents key:Kc to encryption contents within the security (c6) chip is performed, the 
contents obtained as a decryption processing result are outputted to a user device 
control section, and a user (c7) device acquires contents. The contents key which 
acquired the control section of a security (c8) chip by decryption processing after 
these processings were completed: Cancel Kc and contents (Content). 
[0362] Decode of contents with the contents key which it restricted when it was 
contents use in the count limit of use of the contents based on an attribute certificate 
(AC), and contents key:Kc was decoded in the security chip by these processings, and 
the contents key was acquired, and was acquired is performed, and contents use is 
attained in a user device. 

[0363] In addition, although considered as the configuration which applied the public 
key cryptosystem, used storage public key:SC.Stopub.SP.K corresponding to SP for 
encryption of a contents key, and used storage private key:SC.Stopri.SP.K 
corresponding to SP for decode of a contents key in the above-mentioned example of 
a configuration It is also possible to apply a common key system, and when applying a 
common key system, storage key (common key):SC.Sto.SP.K corresponding to SP is 



used for processing of the both sides of encryption of a contents key and a decryption. 
In this case, storage key (common key):SC.Sto.SP.K corresponding to SP is stored in 
the service provider management domain of a service provider where the memory of a 
security chip corresponds. 

[0364] In addition, as a distribution gestalt of the contents distribution to the user 
device from a service provider, or an attribute certificate (AC:Attribute Certificate), 
any gestalt of the gestalt performed based on the demand to the service provider 
from a user side and the gestalt (push type model) of the so-called push type which 
transmits to a target from a service provider on the other hand to the user who has 
made the subscriber contract regardless of the existence of a demand of a user is 
possible. In a push type model, a service provider will draw up and distribute the 
attribute certificate for target users (AC) beforehand. 

[0365] Next, with reference to drawing 43 and drawing 44 , an update process of the 
count management data of use is explained. There are a mode which manages the 
count of contents available with the security chip in a user device as mentioned above, 
and two modes which carry out storing management of the count management file at 
the external memory besides a security chip (for example, hard disk), and store only 
the hash value of management data in the memory in a security chip as management 
mode of the count of contents available. It is drawing explaining the update process 
sequence of count management data [ in / drawing 43 and / in drawing 44 / the latter 
mode ]. [ the former ] 

[0366] With reference to drawing 43 , the update process sequence of the count 
management data at the time of considering as the mode which manages a contents 
available time with the security chip in a user device is explained first. Processing of 
the security chip control section in a user device and a user device control section 
(high order software) is shown from the left. The processing sequence of drawing 43 
shows subsequent processing as that to which verification of an attribute certificate 
can already be managed within the security chip. 

[0367] (1) If the control section of a security chip judges with the contents use 
conditions recorded on the attribute certificate [ finishing / verification ] being the 
count limit contents of off-line use, it will acquire each data of the application ID 
corresponding to a contents identifier, an attribute certificate (AC) serial number, and 
the count of a contents use limit from an attribute certificate. Furthermore, each data 
of user ID and a service provider ID inputted by the user at the time of purchase 
processing of contents is acquired through a user device control section, and such 
acquired applications ID, an attribute certificate (AC) serial number, and the count 



management data of contents use corresponding to each data of user ID verify 
whether it is registered to the service provider management domain of the memory in 
a security chip. 

[0368] As mentioned above in the memory of a security chip, a service provider 
management domain will be set up for every registered service provider, and the count 
management data of contents use will be registered into the management domain. 
[0369] In the example shown in drawing 43 , as for an attribute certificate (AC), each 
data of countof application ID:0002 attribute (certificate AC) serial:3278 contents use 
limit 10 is recorded, and user input data is user ID:6737 service-provider ID:5678. 
[0370] The control section of a security chip verifies whether the count management 
data of contents use corresponding to these data is in the service provider 
management domain where it corresponds in memory, in the data of SP management 
domain data (before updating) shown in drawing 43 , application ID:0002 and the data 
corresponding to attribute (certificate AC) serial:3278 exist as service provider 
ID:5678 and count management data of contents use corresponding to user ID:6737, 
and available — it is set up with count (number of** times):7. 

[0371] (2) a security chip control section is available from this extract data — perform 
decryption processing of (3) encryption contents key in which use of contents was 
stored by authorization, i.e., an attribute certificate, the condition [ having checked 
that it is count (number of ** times):7>0, below the count of a limit further recorded 
on the attribute certificate, and that it was 10>=7, and these having been checked ]. 
[0372] (4) A security chip control section performs further the data update process to 
which 1 **** of the counts of available of the associated data of the service provider 
management domain where it corresponds in memory is carried out. In this case, the 
count of available in application ID:0002 and the data corresponding to attribute 
(certificate AC) serial:3278 (the number of ** times): Perform processing which 
updates 7 to 6. In addition, decryption processing of the encryption contents key of 
(3) and an update process of the count management data of (4) may often also as a 
configuration which makes (3) behind for (4) previously perform procedure to 
juxtaposition. 

[0373] Next, the update process sequence of the count management data at the time 
of carrying out storing management of the count management file at the external 
memory besides a security chip (for example, hard disk), and considering as the mode 
which stores only the hash value of management data in the memory in a security chip 
with reference to drawing 44 , is explained. Processing of the security chip control 
section in a user device and a user device control section (high order software) is 



shown from the left. The processing sequence of drawing 44 shows subsequent 
processing as that to which verification of an attribute certificate can already be 
managed within the security chip. 

[0374] If the control section of a security chip judges with the contents use 
conditions recorded on the attribute certificate being the count limit contents of 
off-line use, it will perform read-out processing of the count management file from 
external memory. A count management file is in HDD which a user device control 
section manages by a diagram, and a count management file is read in (1) user device 
control section, and it is outputted to a security chip. Even if this read-out object is 
management file all data, it may be only data about the service provider corresponding 
to contents. 

[0375] Next, the control section of a security chip develops the count management 
file which received from (2) user device control section to RAM in a security chip, and 
calculates a hash value based on expansion data. Count management data has the 
field configuration which stored two or more count management data matched with a 
service provider ID and user ID. The hash value is generated and stored in the service 
provider management domain in the memory of a security chip to the field data 
matched with a service provider ID and user ID. 

[0376] It calculates a hash value by the control section of a security chip receiving 
from a user device, and extracting the field data corresponding to the service provider 
ID specified by the user and user ID from the count management file developed to 
RAM, and compares the calculated value with the hash value stored in the service 
provider management domain of the memory in a security chip. If a calculation hash 
value and a storing hash value are in agreement, it will judge with there being no 
alteration in data, and will progress to the next processing. 

[0377] The corresponding field stored in the (service-provider SP) management 
domain where a hash value is computed based on service-provider ID:5678 of RAM 
expansion data, and the field data of user-ID:6737, and it corresponds in a security 
chip in the example of drawing, service-provider ID:5678 [ i.e., ], the hash value of 
user-ID:6737: It will compare with 8731. 

[0378] (3) Transmit the notice which shows the congruous purports when a hash 
value is in agreement to a user device, and when coincidence is not obtained, transmit 
an error message to a user device. (4) Next, the control section of a security chip 
acquires each data of the application ID corresponding to a contents identifier, an 
attribute certificate (AC) serial number, and the count of a contents use limit from an 
attribute certificate. Furthermore, each data of user ID and a service provider ID 



inputted by the user at the time of purchase processing of contents is acquired 
through a user device control section, such acquired applications ID, an attribute 
certificate (AC) serial number, and the count management data of contents use 
corresponding to each data of user ID receive from a user device, and it verifies 
whether it is registered to the count management file developed to RAM. 
[0379] In the example shown in drawing 44 , as for an attribute certificate (AC), each 
data of countof application ID:0002 attribute (certificate AC) serial:3278 contents use 
limit 10 is recorded, and user input data is user ID:6737 service-provider ID:5678. 
[0380] The control section of a security chip verifies whether the count management 
data of contents use corresponding to these data is registered to the count 
management file developed to RAM. Into the data in [ RAM ] SC of the maximum 
upper case shown in drawing 44 , application ID:0002 and the data corresponding to 
attribute (certificate AC) serial:3278 exist as service provider ID:5678 and count 
management data of contents use corresponding to user ID:6737, and it is set up 
with :7 the number of available times (the number of ** times). 

[0381] (5) a security chip control section is available from this extract data — perform 
decryption processing of (6) encryption contents key in which use of contents was 
stored by authorization, i.e., an attribute certificate, the condition [ having checked 
that it is count (number of ** times):7>0, below the count of a limit further recorded 
on the attribute certificate, and that it was 10>=7, and these having been checked ]. 
[0382] (7) A security chip control section performs further the data update process to 
which 1 **** of the counts of available of the associated data of the count 
management file developed to RAM is carried out. In this case, the count of available 
in application ID:0002 and the data corresponding to attribute (certificate AC) 
serial:3278 (the number of ** times): Perform processing which updates 7 to 6. 
[0383] Furthermore, a security chip control section calculates the new hash value 
based on the renewal data of (8), and stores it in the corresponding field stored in the 
(service provider SP) management domain where it corresponds in (9) security chip. 
The hash value of SP management domain of the bottom of drawing corresponding to 
[ in the example of drawing 44 , the hash value based on application ID:0002 before 
updating and the field data corresponding to attribute (certificate AC) serial:3278 is 
8731, and the hash value based on the data of this field after updating is set to bc35, 
and ] service-provider ID:5678 and user-ID:6737: bc35 will be stored as an updating 
hash value. 

[0384] (10) Transmit the updated count management file to a user device control 
section after termination of an update process, and a user device control section 



stores the count management file which received in a hard disk. 

[0385] Thus, while renewal of data which this count management data of contents use 

is referred to, carries out 1 decrement of the count of available to the utilization time 

of contents for every use, and is set to 5~>4->3->2->1->0 is performed, a new hash 

value is computed based on updating data, an update process is performed, and 

contents use within the count of a use limit recorded on the attribute certificate is 

attained. 

[0386] In the above, use of the contents according to the contents use conditions of 
an attribute certificate was explained. In addition, in the above-mentioned explanation, 
although time limitation and a count limit were explained separately After an attribute 
certificate with both limits of time limitation and a count limit is also possible and 
judging contents use propriety based on two conditions in these cases A contents key 
shall be decoded a condition [ the check of being contents use in the term within the 
use condition set as the attribute certificate, and a count ]. 
[0387] It explained that use of contents was performed in the user device which 
various use conditions, such as time limitation, a count limit, and buying up, are set to 
a [upgrade processing] attribute certificate as use conditions for contents, and has a 
security chip in it based on these use conditions. Next, the processing which changes 
a use limit of contents, such as modification of the count of a contents use limit set, 
for example as the attribute certificate or extension of time limitation, i.e., upgrade 
processing, is explained. 

[0388] Specifically, there are various kinds of modes explained below in upgrade 
processing. 

(1) Increase the count of available of the attribute certificate which recorded the 
count limit of use as contents use conditions. For example, he bought the ticket 10 
times, and it remains 5 times, and increases to 10 times. He buys a ticket 10 times and 
usage OFF is increased for a ticket 10 times. 

(2) Extend the use period of the attribute certificate which recorded use time 
limitation as contents use conditions. For example, a period is extended so that what 
can be used until after one week can be used until after one month. A period is 
extended so that the thing in which it became impossible to spend a period, having 
gone out can be used until after one month. 

(3) Modification of the use conditions of the attribute certificate which recorded a 
count limit and time limitation as contents use conditions. For example, a count limit is 
changed into time limitation. Time limitation is changed into a count limit. A count limit 
is changed into buying up. Time limitation is changed into buying up. 



(4) The album-ized contents data of an album-ized upgrade single string, For example, 
contents 1-n of plurality (n) stored in CD of one sheet, or DVD, Or there are a certain 
series-ized contents 1 - n, and it is purchase settled about these some. When the 
user holds the plurality of the attribute certificate 1 corresponding to purchased 
contents - the attribute certificate n in a user device, For example, when the attribute 
certificate 1 corresponding to contents 1, the attribute certificate 3 corresponding to 
contents 3, and the attribute certificate 5 corresponding to contents 5 are held to the 
user device, By showing a service provider these attribute certificates, the package 
(album) purchase of other contents which constitute an album, i.e., the contents of 
contents 2, 4, and 6 - n, can be carried out at a discount price. 

[0389] There are various modes mentioned above in upgrade processing based on an 
attribute certificate. The outline of the activation sequence of this upgrade processing 
is as follows. First, a service provider (SP) shows a user device an upgrade menu, and 
a user chooses an upgrade menu. A user device transmits an upgrade demand 
command to a security chip according to assignment of a user with the tbe data of the 
attribute certificate [ finishing / acquisition ] made into an upgrade processing object 
The control section of a security chip performs the communication link with a service 
provider, and transmits the attribute certificate [ finishing / acquisition ] made into an 
upgrade processing object to a service provider. After a service provider verifies the 
received attribute certificate, it performs upgrade processing which the user specified, 
publishes a new attribute certificate, and transmits to a security chip. In a user device, 
it becomes possible to use contents according to the use conditions of a new 
attribute certificate. 

[0390] Upgrade processing in case the contents use conditions hereafter indicated by 
the attribute certificate (AC) used as the base of an upgrade are the following three 
modes is explained one by one. 

(A) Count limit contents [of count limit (contents C) of online-use time limitation 
(contents B) online-use off-line-use0391] (A) upgrade **** which used the 
online-use time limitation attribute certificate (AC) as the base — first, the contents 
use conditions recorded on the attribute certificate are on-line processing, and when 
it holds the attribute certificate with which use time limitation was set up, explain the 
upgrade processing which used this online-use time limitation attribute certificate as 
the base according to the sequence diagram of drawing 45 . Processing of the security 
chip control section in a user device, a user device control section (high order 
software), and a service provider is shown in drawing 45 from the left. 
[0392] In drawing 45 , the service provider ID acquisition processing from an attribute 



certificate in case the attribute certificate is stored in the internal memory of a 
security chip, and (b) the maximum upper case (a) The service provider ID acquisition 
processing from an attribute certificate in case the attribute certificate is stored in 
accessible memory at control of the external memory of a security chip, i.e., a user 
device control-section independent, is shown. These (a) and (b) are alternatively 
performed according to the storing location of an attribute certificate. Mutual 
recognition processing of (c) and contents acquisition processing of (d) are performed 
in common. 

[0393] First, it explains from processing of (a). (a1) A user device control section 
requires retrieval of the attribute certificate of an upgrade processing object of a 
security chip control section. (a2) A security chip control section outputs the list of 
attribute certificates [ finishing / storing in the memory of a chip ] to a user device 
control section, and displays a list by the attached browser in a user (a3) device. (a4) 
A user specifies the attribute certificate (AC) of an upgrade processing object from 
the displayed list, and transmits a read-out instruction to a security chip control 
section. (a5) A security chip control section reads the specified attribute certificate 
from an internal memory, outputs it to a user device control section, in a user (a6) 
device, displays an attribute certificate by the attached browser, and acquires the 
service provider identifier in attribute certificate storing data (SP ID). 
[0394] It becomes processing of (b) when the attribute certificate is stored in 
accessible memory by control of the external memory of a security chip, i.e., a user 
device control-section independent. (b1) A user device control section performs a 
search of the attribute certificate of an upgrade processing object, in a user (b2) 
device, from AC list displayed by the attached browser, it specifies the attribute 
certificate (AC) of an upgrade processing object, is beginning to read it, displays an 
attribute certificate, and acquires the service provider identifier (SP ID) in attribute 
(b4) certificate storing data. 

[0395] The service provider identifier (SP ID) acquired by either processing of the 
above (a) and (b) is used in order to acquire information required for mutual 
recognition from a service provider management domain. As mentioned above, the 
password input set up for every service provider is required for access to a service 
provider management domain, and by the password input corresponding to the service 
provider identifier (SP ID) acquired from the attribute certificate, a user performs 
access to a service provider management domain, and performs mutual recognition 
processing between the security chip shown in (c1) of drawing 45 , and a service 
provider. 



[0396] This mutual recognition processing is performed as mutual recognition 
processing by TLS1 .0 processing of drawing 16 explained previously, or other methods, 
for example, a public key system. In this mutual recognition processing, verification of 
a mutual public key certificate is made and the public key certificate to a root 
certificate authority (CA) is verified continuously if needed. In this authentication 
processing, a security chip and a service provider share a session key (Kses). 
Formation of mutual recognition performs [ next ] the processing shown in drawing 45 
(d), i.e., upgrade attribute certification dictation profit processing. 
[0397] (d1) A user checks the authority information on the attribute certificate 
displayed by the browser of attachment of a user device (contents use conditions), 
and outputs the upgrade application demand of an attribute certificate, and upgrade 
conditions to a security chip. The upgrade conditions which the contents use 
conditions recorded on the attribute certificate of the upgrade processing object in 
this example are online time limitation, and a user specifies are modification 
(extension) of time limitation. 

Time limitation -> to the count limit of online, it reversing-interval-restricts, -> buys 
up, and passes to the count limit of reversing interval limit -> off-line, and they are 
conditions, such as modification. 

[0398] (d2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) upgrade application demand from 
a user device control section is received. The check of authority information 
(contents use conditions), a format check, and signature verification processing are 
included in verification processing. Signature verification processing is performed 
according to the same sequence as the processing flow of drawing 20 explained 
previously, for example. 

[0399] Furthermore, it is desirable for the control section of a security chip to acquire 
the public key certificate linked according to the public key certificate information of 
AC holder in an attribute certificate (AC), and to verify a public key certificate if 
needed. For example, when the reliability of the publisher of an attribute certificate 
(AC) is uncertain, the judgment of whether to have the public key certificate of a 
certificate authority justly is attained by verifying the public key certificate of the 
publisher of an attribute certificate (AC). In addition, as the public key certificate 
mentioned above, when hierarchy organization is being made, it is desirable to perform 
to verification of the public key certificate which followed the path on the high order, 
and performed a chain of verification, and the root certificate authority (CA) published. 
In addition, this chain verification may be indispensable. 



[0400] (d3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip will 
send the attribute certificate of an upgrade processing object with the upgrade 
condition information specified by the user to a service provider. It is recorded on the 
attribute certificate of an upgrade processing object that they are online time 
limitation contents as use conditions, and expiration date data are stored in it. 
Furthermore, the data of the contents key enciphered by private key:SP.Sto.K which a 
service provider holds, i.e., [SP.Sto.K], (Kc) are stored. 

[0401] (d4) The service provider which received the attribute certificate from the 
security chip performs signature verification processing of an attribute certificate. 
Moreover, it is desirable in this case to verify continuously the public key certificate 
linked to an attribute certificate and its high order public key certificate. In addition, 
this chain verification may be indispensable. If the justification of an attribute 
certificate is checked by these verification processings, upgrade attribute certificate 
generation processing based on the upgrade condition information specified by the 
user (d5) will be performed. 

[0402] Upgrade attribute certificate generation processing is performed as processing 
which publishes an attribute certificate with a different serial number from the new 
attribute certificate which recorded the contents use conditions specified by the user, 
i.e., the attribute certificate received from the security chip. In addition, the historical 
data containing the serial of the attribute certificate used as the base of an upgrade 
are stored in the newly published upgrade attribute certification in the letter in this 
case. 

[0403] In addition, the mode of an upgrade is modification (extension) of time 
limitation, as mentioned above. 

Time limitation -> to the count limit of online, it reversing-interval-restricts, -> buys 
up and passes to the count limit of reversing interval limit -> off-line, and it is either 
of the modification and, in modification of time limitation, the upgrade attribute 
certificate which newly set up the use period is generated. Moreover, when changing 
into online or the count limit of off-line, the upgrade attribute certificate which stored 
the count of a use limit is generated. Moreover, it buys up, it passes, and when 
changing, the upgrade attribute certificate which considered contents use conditions 
as buying up is generated. 

[0404] Although the contents key stored in an upgrade attribute certificate is stored 
like the original attribute certificate as a contents key [SP.Sto.K (Kc)] enciphered with 
the private key of a service provider when changing into modification of time limitation, 



or the count limit of online To the count limit of off-line, buy up, pass, and modification 
or when changing the contents key which was enciphered in the upgrade attribute 
certificate with the public key corresponding to storage private keyiSC.Stopri.SP.K 
corresponding to SP stored in the service provider management domain of the 
security chip of a user device unlike the original attribute certificate — that is 
[SC.Stopub.SP.K (Kc)] is stored. 

[0405] In addition, it is the case where it considers as off-line processing, and when 
application of the common key system instead of a public key system is being 
performed, the contents key enciphered with the storage key (common key) 
corresponding to SP stored in the service provider management domain of the 
security chip of a user device is stored. In addition, when the service provider does 
not hold this common key, the storage key (common key) corresponding to SP is 
collectively sent at the time of sending of the attribute certificate from the security 
chip of the step (d3) of drawing 45 to a service provider. In this case, it enciphers and 
sends with the session key generated at the time of mutual recognition. 
[0406] A service provider will send this to a security chip, if an upgrade attribute 
certificate is generated. 

[0407] (d6) A security chip control section will perform verification processing of an 
attribute certificate, if the upgrade attribute certificate (AC) from a service provider is 
received. The check with the stored authority information (contents use conditions) in 
agreement with assignment conditions, a format check, and signature verification 
processing are included in verification processing. Signature verification processing is 
performed according to the same sequence as the processing flow of drawing 20 
explained previously, for example. Furthermore, it is desirable that the control section 
of a security chip performs chain verification of a public key certificate according to 
the public key certificate information of AC holder in an attribute certificate (AC) if 
needed. In addition, this chain verification may be indispensable. 

[0408] (d7) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip 
transmits the upgrade attribute certificate confirmation of receipt to a service 
provider, and stores an upgrade (d8) attribute certificate in memory by it. 
[0409] Furthermore, the control section of a security chip performs import processing 
of the count management data of use mentioned above by the utilization time of 
contents, when an upgrade attribute certificate is the count limit of off-line. The detail 
of import processing of the count management data of use is as having explained with 
reference to drawing 37 - drawing 41 previously, and has the mode which stores the 



count of available in the interior of a security chip, and the mode which stores the 
count of available in external memory, and stores only a hash value in a security chip. 
[0410] By the above processing, a user device acquires a new rise clade attribute 
certificate based on the already held attribute certificate, and the use of the contents 
according to the use conditions according to a rise clade attribute certificate of it is 
attained. 

[041 1] (B) The upgrade processing which used the count limit attribute certificate of 
online-use (AC) as the base, next the contents use conditions recorded on the 
attribute certificate are on-line processing, and when it holds the attribute certificate 
with which the count limit of use was set up, explain the upgrade processing which 
used this count limit attribute certificate of online-use as the base according to the 
sequence diagram of drawing 46 . Processing of the security chip control section in a 
user device, a user device control section (high order software), and a service 
provider is shown in drawing 46 from the left. 

[0412] In drawing 46 , as for the service provider ID acquisition processing from an 
attribute certificate in case the attribute certificate is stored in the internal memory 
of a security chip, and (b), an attribute certificate shows the service provider ID 
acquisition processing from the attribute certificate in the case of being stored in the 
external memory of a security chip, i.e., memory accessible at user device 
control-section independent control, and (c of the maximum upper case (a)) is mutual 
recognition processing of a security chip and a service provider. These processings 
are the same as that of the case of above-mentioned drawing 45 , and omit 
explanation. 

[0413] It explains from the processing after formation after mutual recognition. (d1) A 
user checks the authority information on the attribute certificate displayed by the 
browser of attachment of a user device (contents use conditions), and outputs the 
upgrade application demand of an attribute certificate, and upgrade conditions to a 
security chip. The upgrade conditions which the contents use conditions recorded on 
the attribute certificate of the upgrade processing object in this example are the 
count limits of online, and a user specifies are modification (increment in a count) of 
the count of available. 

Count limit of online -> to the count limit of the count limit -> off-line of modification 
online, it count[ of modification online ]-restricts, -> buys up, and passes to time 
limitation, and they are conditions, such as modification. 

[0414] (d2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) upgrade application demand from 



a user device control section is received. The check of authority information 
(contents use conditions), a format check, and signature verification processing are 
included in verification processing. Signature verification processing is performed 
according to the same sequence as the processing flow of drawing 20 explained 
previously, for example. Furthermore, it is desirable to perform the control section of a 
security chip if needed to verification of the public key certificate of AC holder in an 
attribute certificate (AC) and the public key certificate which verified the chain public 
key certificate and the root certificate authority (CA) published further. In addition, 
this chain verification may be indispensable. 

[0415] (d3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip will 
send the attribute certificate of an upgrade processing object with the upgrade 
condition information specified by the user to a service provider. It is recorded on the 
attribute certificate of an upgrade processing object that they are the count limit 
contents of online as use conditions, and the count of a use limit is stored in it. 
Furthermore, the data of the contents key enciphered by private key:SP.Sto.K which a 
service provider holds, i.e., [SP.Sto.K], (Kc) are stored. 

[0416] (d4) The service provider which received the attribute certificate from the 
security chip performs signature verification processing of an attribute certificate. 
Moreover, it is desirable in this case to verify continuously the public key certificate 
linked to an attribute certificate and its high order public key certificate. In addition, 
this chain verification may be indispensable. If the justification of an attribute 
certificate is checked by these verification processings, upgrade attribute certificate 
generation processing based on the upgrade condition information specified by the 
user (d5) will be performed. 

[0417] Upgrade attribute certificate generation processing is performed as processing 
which publishes an attribute certificate with a different serial number from the new 
attribute certificate which recorded the contents use conditions specified by the user, 
i.e., the attribute certificate received from the security chip. In addition, the historical 
data containing the serial of the attribute certificate used as the base of an upgrade 
are stored in the newly published upgrade attribute certification in the letter in this 
case. 

[0418] In addition, the mode of an upgrade is modification (increment in a count) of the 
count of a use limit, as mentioned above. 

Count limit of online -> to the count limit of the count limit -> off-line of modification 
online, it count[ of modification online ]-restricts, -> buys up, and passes to time 



limitation, and it is either of the modification and, in modification of a count limit, the 
upgrade attribute certificate which newly set up the count of a use limit is generated. 
Moreover, when changing into time limitation, the upgrade attribute certificate which 
stored time limitation information is generated. 

[0419] When changing the count of a use limit as a count limit of online and changing 
into time limitation Although the contents key stored in an upgrade attribute 
certificate is stored like the original attribute certificate as a contents key [SP.Sto.K 
(Kc)] enciphered with the private key of a service provider To the count limit of 
off-line, buy up, pass, and modification or when changing the contents key which was 
enciphered in the upgrade attribute certificate with the public key corresponding to 
storage private key:SC.Stopri.SP.K corresponding to SP stored in the service provider 
management domain of the security chip of a user device unlike the original attribute 
certificate — that is [SC.Stopub.SP.K (Kc)] is stored. 

[0420] In addition, it is the case where it considers as off-line processing, and when 
application of the common key system instead of a public key system is being 
performed, the contents key enciphered with the storage key (common key) 
corresponding to SP stored in the service provider management domain of the 
security chip of a user device is stored. In addition, when the service provider does 
not hold this common key, the storage key (common key) corresponding to SP is 
collectively sent at the time of sending of the attribute certificate from the security 
chip of the step (d3) of drawing 46 to a service provider. In this case, it enciphers and 
sends with the session key generated at the time of mutual recognition. 
[0421] A service provider will send this to a security chip, if an upgrade attribute 
certificate is generated. 

[0422] (d6) A security chip control section will perform verification processing of an 
attribute certificate, if the upgrade attribute certificate (AC) from a service provider is 
received. The check with the stored authority information (contents use conditions) in 
agreement with assignment conditions, a format check, and signature verification 
processing are included in verification processing. Signature verification processing is 
performed according to the same sequence as the processing flow of drawing 20 
explained previously, for example. Furthermore, it is desirable that the control section 
of a security chip performs chain verification of a public key certificate according to 
the public key certificate information of AC holder in an attribute certificate (AC) if 
needed. In addition, this chain verification may be indispensable. 
[0423] (d7) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip 



transmits the upgrade attribute certificate confirmation of receipt to a service 
provider, and stores an upgrade (d8) attribute certificate in memory by it. 
[0424] Furthermore, the control section of a security chip performs import processing 
of the count management data of use mentioned above by the utilization time of 
contents, when an upgrade attribute certificate is the count limit of off-line. The detail 
of the count management data import processing of use is as having explained with 
reference to drawing 37 - drawing 41 previously, and has the mode which stores the 
count of available in the interior of a security chip, and the mode which stores the 
count of available in external memory, and stores only a hash value in a security chip. 
[0425] By the above processing, a user device acquires a new rise clade attribute 
certificate based on the already held attribute certificate, and the use of the contents 
according to the use conditions according to a rise clade attribute certificate of it is 
attained. 

[0426] (C) The upgrade processing which used the count limit attribute certificate of 
off-line-use (AC) as the base, next the contents use conditions recorded on the 
attribute certificate are off-line processing, and when it holds the attribute certificate 
with which the count limit of use was set up, explain the upgrade processing which 
used this count limit attribute certificate of off-line-use as the base according to the 
sequence diagram of drawing 47 . Processing of the security chip control section in a 
user device, a user device control section (high order software), and a service 
provider is shown in drawing 47 from the left. 

[0427] In drawing 47 , as for the service provider ID acquisition processing from an 
attribute certificate in case the attribute certificate is stored in the internal memory 
of a security chip, and (b), an attribute certificate shows the service provider ID 
acquisition processing from the attribute certificate in the case of being stored in the 
external memory of a security chip, i.e., memory accessible at user device 
control-section independent control, and (c of the maximum upper case (a)) is mutual 
recognition processing of a security chip and a service provider. These processings 
are the same as that of the case of above-mentioned drawing 45 , and omit 
explanation. 

[0428] It explains from the processing after formation after mutual recognition. (d1) A 
user checks the authority information on the attribute certificate displayed by the 
browser of attachment of a user device (contents use conditions), and outputs the 
upgrade application demand of an attribute certificate, and upgrade conditions to a 
security chip. The upgrade conditions which the contents use conditions recorded on 
the attribute certificate of the upgrade processing object in this example are the 



count limits of off-line, and a user specifies are modification (increment in a count) of 
the count of available. 

Count limit of off-line -> to the count limit of the count limit -> online of modification 
off-line, it count[ of modification off-line ]-restricts f -> buys up, and passes to time 
limitation, and they are conditions, such as modification. 

[0429] (d2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) upgrade application demand from 
a user device control section is received. The check of authority information 
(contents use conditions), a format check, and signature verification processing are 
included in verification processing. Signature verification processing is performed 
according to the same sequence as the processing flow of drawing 20 explained 
previously, for example. Furthermore, it is desirable to perform the control section of a 
security chip if needed to verification of the public key certificate of AC holder in an 
attribute certificate (AC) and the public key certificate which verified the chain public 
key certificate and the root certificate authority (CA) published further. In addition, 
this chain verification may be indispensable. 

[0430] (d3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip will 
send the attribute certificate of an upgrade processing object with the upgrade 
condition information specified by the user to a service provider. It is recorded on the 
attribute certificate of an upgrade processing object that they are the count limit 
contents of off-line as use conditions, and the count of a use limit is stored in it. 
Furthermore, the contents key enciphered with the public key corresponding to 
storage private key:SC.Stopri.SP.K corresponding to SP stored in the service provider 
management domain of the security chip of a user device, i.e., [SC.Stopub.SP.K], (Kc) 
is stored. 

[0431] (d4) The service provider which received the attribute certificate from the 
security chip performs signature verification processing of an attribute certificate. 
Moreover, it is desirable in this case to verify continuously the public key certificate 
linked to an attribute certificate and its high order public key certificate. In addition, 
this chain verification may be indispensable. If the justification of an attribute 
certificate is checked by these verification processings, upgrade attribute certificate 
generation processing based on the upgrade condition information specified by the 
user (d5) will be performed. 

[0432] Upgrade attribute certificate generation processing is performed as processing 
which publishes an attribute certificate with a different serial number from the new 



attribute certificate which recorded the contents use conditions specified by the user, 
i.e., the attribute certificate received from the security chip. In addition, the historical 
data containing the serial of the attribute certificate used as the base of an upgrade 
are stored in the newly published upgrade attribute certification in the letter in this 
case. 

[0433] In addition, the mode of an upgrade is modification (increment in a count) of the 
count of a use limit, as mentioned above. 

Count limit of off-line -> to the count limit of the count limit -> online of modification 
off-line, it count[ of modification off-line ]-restricts, -> buys up, and passes to time 
limitation, and it is either of the modification and, in modification of a count limit, the 
upgrade attribute certificate which newly set up the count of a use limit is generated. 
Moreover, when changing into time limitation, the upgrade attribute certificate which 
stored time limitation information is generated. 

[0434] Buy up, when changing the count of a use limit as a count limit of off-line, and 
when passing and changing The contents key stored in an upgrade attribute 
certificate Although stored as the contents key enciphered with the public key 
corresponding to storage private key:SC.Stopri.SP.K corresponding to SP stored in 
the service provider management domain as well as the original attribute certificate, 
i.e., [SC.Stopub.SP.K], (Kc) When you change into time limitation to modification or the 
count limit of online, unlike the original attribute certificate, let the contents key 
stored in an upgrade attribute certificate be the contents key [SP.Sto.K (Kc)] 
enciphered with the private key of a service provider. 

[0435] In addition, it is the case where it considers as off-line processing, and when 
application of the common key system instead of a public key system is being 
performed, the contents key enciphered with the storage key (common key) 
corresponding to SP stored in the service provider management domain of the 
security chip of a user device is stored.- In addition, when the service provider does 
not hold this common key, the storage key (common key) corresponding to SP is 
collectively sent at the time of sending of the attribute certificate from the security 
chip of the step (d3) of drawing 47 to a service provider. In this case, it enciphers and 
sends with the session key generated at the time of mutual recognition. 
[0436] A service provider will send this to a security chip, if an upgrade attribute 
certificate is generated. 

[0437] (d6) A security chip control section will perform verification processing of an 
attribute certificate, if the upgrade attribute certificate (AC) from a service provider is 
received. The check with the stored authority information (contents use conditions) in 



agreement with assignment conditions, a format check, and signature verification 
processing are included in verification processing. Signature verification processing is 
performed according to the same sequence as the processing flow of drawing 20 
explained previously, for example. Furthermore, it is desirable that the control section 
of a security chip performs chain verification of a public key certificate according to 
the public key certificate information of AC holder in an attribute certificate (AC) if 
needed. In addition, this chain verification may be indispensable. 

[0438] (d7) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip 
transmits the upgrade attribute certificate confirmation of receipt to a service 
provider, and stores an upgrade (d8) attribute certificate in memory by it. 
[0439] Furthermore, the control section of a security chip performs import processing 
of the count management data of use mentioned above by the utilization time of 
contents, when an upgrade attribute certificate is the count limit of off-line. The detail 
of the count management data import processing of use is as having explained with 
reference to drawing 37 - drawing 41 previously, and has the mode which stores the 
count of available in the interior of a security chip, and the mode which stores the 
count of available in external memory, and stores only a hash value in a security chip. 
[0440] By the above processing, a user device acquires a new rise clade attribute 
certificate based on the already held attribute certificate, and the use of the contents 
according to the use conditions according to a rise clade attribute certificate of it is 
attained. 

[0441] (D) An album purchase mold upgrade, next a series of album-ized contents 
data, For example, contents 1-n of plurality (n) stored in CD of one sheet, or DVD, Or 
there are a certain series-ized contents 1 - n, and it is purchase settled about these 
some. When the user holds the plurality of the attribute certificate 1 corresponding to 
purchased contents - the attribute certificate n in a user device, by showing a service 
provider these attribute certificates The upgrade processing considered as the 
processing which carries out package (album) purchase of other contents which 
constitute an album, i.e., the contents of contents 2, 4, and 6 - n, at a discount price is 
explained with reference to drawing 48 . 

[0442] Drawing 48 shows processing of the security chip control section in a user 
device, a user device control section (high order software), and a service provider 
from the left. As for the service provider ID acquisition processing from an attribute 
certificate in case the attribute certificate is stored in the internal memory of a 
security chip, and (b), an attribute certificate shows the service provider ID 



acquisition processing from the attribute certificate in the case of being stored in the 
external memory of a security chip, i.e., memory accessible at user device 
control-section independent control, and (c of the maximum upper case (a)) is mutual 
recognition processing of a security chip and a service provider. These processings 
are the same as that of the case of above-mentioned drawing 45 , and omit 
explanation. 

[0443] It explains from the processing after formation after mutual recognition. (d1) A 
user checks the authority information on the attribute certificate displayed by the 
browser of attachment of a user device (contents use conditions), and outputs the 
upgrade application demand of an attribute certificate, and upgrade conditions to a 
security chip. The attribute certificates of the upgrade processing object in this 
example are one or more attribute certificates corresponding to some contents which 
constitute the album identified as a set pair of two or more of a certain contents, 
other parts from which the upgrade conditions which a user specifies constitute an 
album — they are conditions, such as the purchase of all other contents that 
constitute the purchase album of contents. 

[0444] (d2) A security chip control section will perform verification processing of an 
attribute certificate, if the attribute (certificate AC) upgrade application demand from 
a user device control section is received. The check of authority information 
(contents use conditions), a format check, and signature verification processing are 
included in verification processing. Signature verification processing is performed 
according to the same sequence as the processing flow of drawing 20 explained 
previously, for example. Furthermore, it is desirable to perform the control section of a 
security chip if needed to verification of the public key certificate of AC holder in an 
attribute certificate (AC) and the public key certificate which verified the chain public 
key certificate and the root certificate authority (CA) published further. In addition, 
this chain verification may be indispensable. 

[0445] (d3) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip will 
send the attribute certificate of an upgrade processing object with the upgrade 
condition information specified by the user to a service provider. 
[0446] (d4) The service provider which received the attribute certificate from the 
security chip performs signature verification processing of an attribute certificate. 
Moreover, it is desirable in this case to verify continuously the public key certificate 
linked to an attribute certificate and its high order public key certificate. In addition, 
this chain verification may be indispensable. If the justification of an attribute 



certificate is checked by these verification processings, upgrade attribute certificate 
generation processing based on the upgrade condition information specified by the 
user (d5) will be performed. 

[0447] Upgrade attribute certificate generation processing is performed as processing 
which publishes an attribute certificate with a different serial number from the new 
attribute certificate which recorded the contents use conditions specified by the user, 
i.e., the attribute certificate received from the security chip. In addition, the historical 
data containing the serial of the attribute certificate used as the base of an upgrade 
are stored in the newly published upgrade attribute certification in the letter in this 
case. 

[0448] in addition, other parts which the others which constitute an album are either 
of the purchase of all other contents that constitute the purchase album of contents 
a part, and constitute an album as the mode of an upgrade was mentioned above — 
the case of the purchase of contents — a part of purchase assignment — the 
upgrade attribute certificate corresponding to contents is generated. Moreover, in the 
purchase of all other contents that constitute an album, the upgrade attribute 
certificate corresponding to all other contents that constitute an album is generated. 
[0449] In addition, the use conditions in this case are possible also for a user 
specifying beforehand, and good also as a configuration for which a service provider 
opts. When a user specifies, it specifies in the step (d1 ) of drawing 48 , and assignment 
conditions are collectively sent at the time of sending of the attribute certificate from 
the security chip of (d3) to a service provider. 

[0450] When generating the upgrade attribute certificate considered as off-line use, a 
service provider The contents key [SC.Stopub.SP.K (Kc)] enciphered with the public 
key corresponding to storage private key:SC.Stopri.SP.K corresponding to SP stored 
in the service provider management domain is stored. When you generate the upgrade 
attribute certificate considered as online use, let the contents key stored in an 
upgrade attribute certificate be the contents key [SP.Sto.K (Kc)] enciphered with the 
private key of a service provider. 

[0451] In addition, it is the case where it considers as off-line processing, and when 
application of the common key system instead of a public key system is being 
performed, the contents key enciphered with the storage key (common key) 
corresponding to SP stored in the service provider management domain of the 
security chip of a user device is stored. In addition, when the service provider does 
not hold this common key, the storage key (common key) corresponding to SP is 
collectively sent at the time of sending of the attribute certificate from the security 



chip of the step (d3) of drawing 48 to a service provider. In this case, it enciphers and 
sends with the session key generated at the time of mutual recognition. 
[0452] A service provider will send this to a security chip, if an upgrade attribute 
certificate is generated. 

[0453] (d6) A security chip control section will perform verification processing of an 
attribute certificate, if the upgrade attribute certificate (AC) from a service provider is 
received. The check with the stored authority information (contents use conditions) in 
agreement with assignment conditions, a format check, and signature verification 
processing are included in verification processing. Signature verification processing is 
performed according to the same sequence as the processing flow of drawing 20 
explained previously, for example. Furthermore, it is desirable that the control section 
of a security chip performs chain verification of a public key certificate according to 
the public key certificate information of AC holder in an attribute certificate (AC) if 
needed. In addition, this chain verification may be indispensable. 

[0454] (d7) If the judgment without the alteration of an attribute certificate is obtained 
by verification of an attribute certificate, the control section of a security chip 
transmits the upgrade attribute certificate confirmation of receipt to a service 
provider, and stores an upgrade (d8) attribute certificate in memory by it. 
[0455] Furthermore, the control section of a security chip performs import processing 
of the count management data of use mentioned above by the utilization time of 
contents, when an upgrade attribute certificate is the count limit of off-line. The detail 
of the count management data import processing of use is as having explained with 
reference to drawing 37 - drawing 41 previously, and has the mode which stores the 
count of available in the interior of a security chip, and the mode which stores the 
count of available in external memory, and stores only a hash value in a security chip. 
[0456] By the above processing, a user device acquires a new rise clade attribute 
certificate based on the already held attribute certificate, and the use of the contents 
according to the use conditions according to a rise clade attribute certificate of it is 
attained. 

[0457] As for the right information stored in the storage means in the user device with 
which a [data backup and restoration-processing] user purchases from a service 
provider, and has a security chip, and a certification document, it is desirable to back 
up in preparation for the situation of disappearance. There are information which may 
be seen, and information which must be held to secure one as information which 
should back up. The information which may be seen is certification documents, such 
as a public key certificate and an attribute certificate. With the information held to 



secure one, there is information of evidence on the service subscription currently 
written in the service provider management domain of for example, a security chip etc. 
[0458] About certification documents, such as a public key certificate and an attribute 
certificate, it is enough that a user stores duplicate information in the memory card 
which carried the hard disk and the flash memory suitably. Although the contents key 
is stored in the attribute certificate, since connection with a service provider is 
needed in online use and the justification of a device (security chip) is checked at the 
time of the mutual recognition in this case, contents are not used unjustly. Moreover, 
since the key for decoding a contents key also in the case of off-line use is stored in 
the service provider management domain of security CHIBBU, it becomes able [ only 
an authorized user ] for access with the password which held and mentioned above 
the security chip of a valid-user device to decode an encryption contents key. 
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[Brief Description of the Drawings] 

[Drawing l] It is drawing explaining the outline of the contents use managerial system 
configuration of this invention. 

[Drawing 2] It is drawing showing a format of an applicable public key certificate in the 
contents use managerial system of this invention. 

[Drawing 3] It is drawing showing a format of an applicable public key certificate in the 
contents use managerial system of this invention. 

[Drawing 4] It is drawing showing a format of an applicable public key certificate in the 
contents use managerial system of this invention. 



[Drawing 5] It is drawing showing a format of the attribute certificate as an applicable 
authority information certificate in the contents use managerial system of this 
invention. 

[Drawing 6] It is the block diagram showing the configuration of the security chip in a 
user device. 

[Drawing 7] It is drawing showing the main data used as the processing object within a 
user device. 

[Drawing 8] It is drawing showing the initial registration processing sequence of 
authentication information (password). 

[Drawing 9] It is drawing showing the modification processing sequence of 
authentication information (password). 

[Drawing 10] It is drawing showing the modification processing sequence of 
authentication information (password). 

[Drawing 11] It is drawing explaining correspondence with authentication information 
(password) and a master password. 

[Drawing 12] It is drawing explaining distribution processing of a master password. 
[Drawing 13] It is drawing showing the recurrence line processing sequence of a master 
password. 

[Drawing 14] It is the flow Fig. showing calculation processing of a master password. 
[Drawing 15] It is drawing showing attribute certificate (AC) issue and a contents 
reception sequence. 

[Drawing 16] It is drawing showing the sequence of the TLS1.0 handshake protocol 
which is the example of mutual recognition processing. 

[Drawing 17] It is drawing explaining generation processing of MAC applied to data 
alteration verification. 

[Drawing 18] It is drawing showing the issue processing sequence of an attribute 
certificate (AC). 

[Drawing 19] It is a flow Fig. explaining the ECDSA signature generation procedure 
which is the example of signature generation processing. 

[Drawing 20] It is a flow Fig. explaining the ECDSA signature verification procedure 
which is the example of signature verification processing. 

[Drawing 21] It is drawing explaining correlation with a public key certificate (PKC) 
and an attribute certificate (AC). 

[Drawing 22] It is drawing showing the verification processing flow of a public key 
certificate (PKC). 

[Drawing 23] It is drawing showing the verification processing flow (Example 1) of an 



attribute certificate (AC). 

[Drawing 24] It is drawing showing the verification processing flow (Example 2) of an 
attribute certificate (AC). 

[Drawing 25] It is a sequence diagram explaining contents use processing (off-line) in 
which the attribute certificate (AC) was used. 

[Drawing 26] It is a sequence diagram explaining contents use processing (online) in 
which the attribute certificate (AC) was used. 

[Drawing 27] It is drawing explaining contents use processing (off-line) in which the 
attribute certificate (AC) which stored the encryption data of a contents key with a 
global common key was used. 

[Drawing 28] It is a sequence diagram explaining an update process of a global common 
key. 

[Drawing 29] It is a sequence diagram explaining an update process of a global common 
key. 

[Drawing 30] It is drawing explaining the decryption processing using a decoder. 
[Drawing 31] It is drawing explaining the decryption processing sequence using a 
decoder. 

[Drawing 32] It is drawing explaining the decryption processing flow using a decoder. 
[Drawing 33] It is a flow Fig. explaining application processing of the attribute 
certificate by the side of a user device (AC). 

[Drawing 34] It is a sequence diagram explaining use processing of the online time 
limitation contents using an attribute certificate (AC). 

[Drawing 35] It is a sequence diagram explaining use processing of the count limit 
contents of online using an attribute certificate (AC). 

[Drawing 36] It is a sequence diagram explaining use processing of the off-line 
buying-up contents using an attribute certificate (AC). 

[Drawing 37] It is drawing explaining import processing of the count management data 
of use corresponding to the count limit contents of off-line. 

[Drawing 38] It is drawing showing the example of a data configuration of the count 
management data of use corresponding to the count limit contents of off-line. 
[Drawing 39] It is a flow Fig. explaining import processing of the count management 
data of use corresponding to the count limit contents of off-line. 

[Drawing 40] It is drawing explaining import processing of the count management data 
of use of the hash value management mold corresponding to the count limit contents of 
off-line. 

[Drawing 41] It is a flow Fig. explaining import processing of the count management 



data of use of the hash value management mold corresponding to the count limit 
contents of off-line. 

[Drawing 42] It is drawing explaining the contents use processing which applied the 
attribute certificate of the count limit contents of off-line. 

[Drawing 43] It is drawing explaining an update process of the count management data 
corresponding to the count limit contents of off-line. 

[Drawing 44] It is drawing explaining an update process of the count management data 
of the hash value management mold corresponding to the count limit contents of off-line. 
[Drawing 45] It is drawing explaining the upgrade processing which applied the online 
time limitation attribute certificate as the base. 

[Drawing 46] It is drawing explaining the upgrade processing which applied the count 
limit attribute certificate of online as the base. 

[Drawing 47] It is drawing explaining the upgrade processing which applied the count 
limit attribute certificate of off-line as the base. 

[Drawing 48] It is drawing explaining upgrade processing of an album purchase mold. 
[Drawing 49] It is drawing explaining the outline of data restoration processing by the 
support center. 

[Drawing 50] It is drawing explaining the processing sequence outline of data 
restoration processing by the support center. 

[Drawing 51] It is drawing explaining the data backup processing sequence performed 
by the user device side. 

[Drawing 52] It is drawing explaining the outline of the backup data read-out 
processing by the support center. 

[Drawing 53] It is drawing explaining the data restoration-processing sequence by the 
support center. 

[Drawing 54] It is drawing showing the example of a configuration of a user device. 
[Drawing 55] It is drawing showing the example of a configuration of each entity, such 
as a service provider, a support center, and a contents creator. 
[Description of Notations] 

101 User Device 

102 Service Provider 

103 Contents Creator 

104 User Device Manufacturer 

105 Support Center 

106 Certificate Authority 
110 Attribute Certificate 



200 User Device 

201 CPU (Central processing Unit) 

202 Interface 

203 ROM(Read-Only-Memory) 

204 RAM(Random Access Memory) 

205 Cipher-Processing Section 

206 Memory Section 
210 Security Chip 

221 User Device Side Control Section 

222 External Memory Section 
280 Decoder 

301 System Holder 

302 Service Provider 

303 Contents Creator 

304 User Device 

410 User Device 

411 Security Chip 

421 Storage Means 

422 Storage Media 
430 User Device 
450 Support Center 

470 User Device 

471 Storage Media 

472 User Device 
475 Support Center 

501 CPU (Central processing Unit) 

502 ROM(Read-Only-Memory) 

503 RAM (Random Access Memory) 

504 HDD 

505 Input Section 

506 Output Section 

507 Communications Department 

508 Drive 

509 Removable Record Medium 

510 Bus 

511 Input/output Interface 



512 Security Chip 

601 CPU(Central processing Unit) 

602 ROM(Read-Only-Memory) 

603 RAM (Random Access Memory) 

604 HDD 

605 Cipher-Processing Means 

606 Drive 

607 Removable Record Medium 
608,609 Communications department 
610 Bus 
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(57) 

#T 3 c 3yry^fiJffl*ffgM5aa^BIti 




(2) 

1 

n yf yyfclfflfcftW l/fca >r y y fOTttfil 
liE^»*a— *f7*/W X Kfl LTBEff-f tTXTa 

tufga— *ff*/WX&, 

HSMMffclBIAStifc 3 >f yy? Uffl^fflf fgfcfto fc 
3yf yy*Jffl*ff&3*fiK*W?-Sfcfc*>^ 10 
itufBsyf yy#Jffl«ISffiiE»£MB1f-eX7 0 n^ 

^fcSMttL, n yf yyfUfflttlSEiBSKl&ttsnfcn 

SOIBa— If fV WXA^Onyfy y #Jffi*fH*$I<E>£ 
tcfftbT, §{g bfc3 yf y y fiJfflMIBJM^fBS^ 
3yf yyfiJM»!»££$L, a-^ffVUXfc 20 
^£3yf yy^MPIWayxf a 0 

itttz^mt^yT-yym^mfiU 

buIB-9-— tT X7p/ W 2> 5 Sfl Ltcuyr y y fljfflfll 

mmmmc^ms nrc 3 yy-y^mm^^mcm.^ it 
?y ; ryy%mT*hZ>zt<Dmi£*£ii ! t£LT, »l 
mt=t y f y ym<D'&^*Mft lt 3 yf v>yi4iS!i 30 
?ZMi&?*&%z£*®WLt?m#MiKiffi<»^y 
ry^mmmmy^T-ho 

nyf yy%«W 3fci6cD3yf yyil : Kc^Hg^ 
it L feHg^fkn yf - y y L, 

3yf yyfOTfcGSLT, HuiBtf-eX7*n>V#fr5 
§{8Lfc3yf yyfiJffl|g|gaEW»fctelft£ttfc3yf 
yyfijffl£ftt»ffiW£ofc3yf yyfijfflT&SfrSfr 
©fij^a^^ft, ¥iJ£*SJfycS-3VT, 3yfyy 40 
jpjffifcfrfcfltefc 3 y f y y *OTT& 5 1 wfUSAMf 5 
nfc c i: t LT, 3.— tf v x ft tc&ffi L fell 
£ StJ v ^ T , MfB 3 y r y y fclffl JSEIHI!* £ tSUft s n 

fi^gayxf a„ 

[If 4 ] tu!H3 y r y y f uffiffiffiiEiE* «\ ng^ffc 
nyf yy*£*§-f Sfctoonyf-yyft : K c£Bg*§ 

Mls-9--ifx^ , P/w^ 50 
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3.-+F7VW Xfcfctt 5 3 y f y y ftlffl LT> ^3 

SMb, gfiL/c3 yf yvmmimimwKtemti 
rc3yryyfjffl^ff1tajt;:^orc3yryyfjfflT^ 

y r y y fijffl^ff tctse o £3 >f y y mmx*dc>% t <om 

Jgtftf 5 ttfc c f: i: LT, -9- - ex y n / <;y 

^W-r-5ci:*lti!Sfc-t-5»^ancEtt<03yxyy 
fljwisayxxAo 

5 ] mib3 yT-yymmfflmmmctmzti 

fc3 yf y y *Uffl&ft1fff8ii> 3 yf y ^jfflfflnMiB 
m 3yryyfjfflin»wism fijfflsiji®*aaita 
i/>3 yf yygvgj 0 <d 3 ffi^v-f ftfrT*& 0 , 
huI B3— *f'fV U X ^ 6 © 3 yf y >y cofijffl &fHt$H© 
SM©aS*«v 3 yf yyfiJfflWMMBBoSH, Sfe 

MfB-9--tfX7 p D/U^tt, 

M!B3— if f;WW e> 03 yf y y ©?ijffl*ff1f fflo 
^Mfflas**^? fuIB3 yf y ymmmBMffi9<o& 

ft tcjs ct, sft l fc 3 yf yymmmmummcmm 
ztiit*vryymmiMH6#foE&Bmt tr> 3y 
f yyfJfflffiWJPlogg, *fct43 yf yyfijffl@|Sc 

T7 -y yy/y- f 3 yf y ymmimum9*3L& u 
3— 9 s f ■> u x tc » l T^fsf s ©a^stf-r 5 

t*®WLt? 1 tfB«cD3yf y^fij 

Mitayxf Ac 

[fl*a 6 ] MIB3 yf y yspjfflffi ffiSEWtftftlWSn 
fcpyf yyfjffl^ff(ct±, 

fft-r§*yyyyfijffl» *fct±> -9--exy°a^ 
y ^tc felt 5 *Jffl*HWJBB3I**H i:-rs*75-i'y 

tuIB^-exyp/W^i, 

ftifB3— tffV < syx^p ) co3 yf y y<DfiJffl^ft1f$go 
SaejffifflS**#5 MIB3 yf y y?iJfflfilffiSE^*o§ 
fifcfS bT, SfiS bfc3 yf yyfijfflffiHTOWfclB^ 
snfcnyf yyfiJffl^ffffifScD^M^ai: LT, *y 

5 y yfijffliaa t * 7 y y y f urn jaaK©? yffl^ff iff ffi 

gM%Hff LT7>y y^L- F3 yf yyfiJfflftRBiHB 
S*^Lx a— «f7*/VXK#LT2Sflrr*»l** 

3yf yyfiJfflUffiirayxf Ac 

f yyjpJffl«HSiEW*©«frxyf -cr-CO^a*^ 



(3) 

3 

iuiB-f-trxyp/v^a, 

l5IBn y f y iJfflMHWOgfmca^ < 7 >y 7?' 

iekop yf yyfyMSwgyxf a 0 

[IMS 8] fufBpyf yyftfflffilWM^ l£py 

v>?mm®mLmf&?3r>i), 10 

y * flHitc J: TBtff £ ft 5 &IM»fEiil3«©fcSEfc «k 

«o3^f-yyjpjffl*ifitraiS'Xf-i*o 
[»««9] tufBp yf yy ftMiiiras^ attii 

W»BBJB©5«T"r*«ttKimi"Tf* D , 

n yf yy offi^cilfflt 3 3 >f yyH£8g^t Lfc 20 

HMffta >f y y«fc, JlttiEWSf OSttflf $H7 -c - 

IBi!c03yf yyfiJMlWSyXf A 0 
[M$3l 0] l3E3>r^yfJffl«llfiiEW»l4s Btt 

SEWWHEjaoaff -r*iitt»B»T« •? , 

«ttlEW**©H141S»7 -r 3 yf y y ©ft 
X£, 30 

WAp yf y yfif Lfc 3 yf y yftfflMHW 
*ff f /WXtWLTBB«-r5'9--trxyn/U 

8UfB3— •f'T/VXtts 

tuIBnyry^fiJfflffiWM^tufB^-ex^nM-y 
WHB-9— ex^n/U^{i, 

BuE3-lf 7WXfr6£ffl Lfc n yf y y ftfflt&RBfE 
WStcftW* ftfc 3 y f y y« *fc»3^T, Inyf 
yytfffifcra-©££3yryyfcLT»8'JSft5ra- 40 
7;WSA}c«-r § 3 yf yvKttmt 2. 3 yf yyftffl 

mwumw*7 v k 3 yf-y^mmmmm 

£LT£$U 3— f / ^ X (c» L T iMMT -5 

nftt%mi&z%tz>ctz®mt?z>?yTyvfm 
fluaea-yxxAo 

y r y y ftfflMJBWofgfTX yf^fY 
huIB-9— ex^P/W^i, 

tusB3 yf y yfUfflttRSSEHWOSEKg^ < 7 -y 7? 50 
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U- K3yxyyfiJffl«i|5gtE^S«04fiKMa*, tu!B* 

{cfBic^p yf- y-mmmmmis^TLo 
im&mi 3] SufBpyf yyftffltiHSHWSHu ^p 
yf y y ft ffl*PSfra»fc *fJSf 5 &ijb8Seiji» k bit 
§ u y ^ntffifcfl&ft bfc«rtT?« t) . 

SuIBp y f y y ft WSlPM^fmcS^ < 7 7 
U- K 3 y f y yfiJffl#H|EiW<04Ji!$ia*\ fufB 'J 

y^^m^^xm%zn^mmmm<Dimi^ 

E«03yf-yyfijfflflilS»>XrA. 
[ff*Si 4] pyf yy«ftffl£fT&-53— tfr/W 
x fc, ayfy y * Uffl^ff tiHKfct&ffl L fc n y f y y ft 
ffl^S!M»^3-^xVWXtcWLTSHM-r^-9--tf 
X 7°p / W ^ 4: £Wf * y X f A fc fc if 5 3 y f y y ft 

bubB3— tfr/WXfi, 

^ncSS^U 3yryyfiJfflWW*^^£ftfc3 
y f y y ¥ iJffl^fftf «<D«H«ia5**lltf 
MfB^-^X^p/W^i, 

tfilBa— 9*r> W X*> 6 3 yf^yflfflfcfHMi©* 

ssaas^ffdfffiBpyf-yyfijfflffiPSiPMtDSfS 
(c£ kt, Sfi bfc3 yf y yfiJfflflilSSEW»{cfBS* 
ftfcnyf yy5pjffl*ftffi«*SHurc7y ^^u- F 
3 yf y yf"JfflttRBSE^«?r^L, 3— *ffVWX{c 
» t TiMfl-T S ©H^HItT So^*^8i!^-rS3yf 

yymmmm^mo 

mxmi 5] fluiBpyfyyftfflfliisiEwsti, ff^ 

ffcpyf yvftm^tzrcibtD^yfyvM : Kc^Hg 
fu!B3-^fVUX{i, 

tuIElf- if X y p / e>SM Lfc3 yf y y ftfflU 
SIIH^{t^tt$ftfc3yf >yHlffl*ffm»cfl6ofc 
3yf yyfijffl-e^s c tows^ftt lt, tulBHl 
^ffcpyf yy«0£#*HfTLT3yf yy»&ffif# 
■r^iih^^^^-r?) ii^is 1 4 ti b«o p yf y v m 

im^mi 6] tulB3yf yyfiJffl«H5g|EW#ti, Bg^ 
fb3yf y^itti/is&io^yf y7« : Kc^HI 
^fk tfcBg^fbp yf y vMttfeM u 
M!B3— •fr/WXti, 

pyf yyftffltc^LT, tuiE-9--£X7 p p;w#>p> 
gffitfc p y f yy«ffl««BB»K«lft«nfc 3 yf 
yyfiJffl*ff'tffgfc^o/c3yf yyjfiifflT?****©^ 
©!pjs«ia*Hffb, ¥y£*snfcsciv-r, nvf yy 



(4) 

5 

ftfcc k**fffc L-T, a-lfTWxrtM&WLfcB 

t s-^v t , Mi a =i > r y y % mmmwm k £ n 

So 

Bfcfcfil 7] Mffinyf yyfiJfflJtffiiEBJ^i, 
{fcnyf yy£^t£fcJ6<Dnyf yy£t : Kc£Bg 

LfcRf^ftn yf y ytt&ftlfi U 
MIB^-exT'cW^i, 

:i-1ffVWXlc:l3ttSnyf yyfiJWcl&LT, t£n 10 
— If WX*»62Sf*»*a yf y y f ijffllf PiSEB£»£ 
£te U Sfl Lfcn y f y y f iJM!IEH^ct&ffi£ n 
fen y yfMfcftflHHfctEo fen >f y y fOTTa& 

y f y yfOffl^ff Ctg o fen yf y yfOTTSS i: WW 

©■tteHrJ^T, MiBnyf yyfiJfflffifiStlBWctett 

snfcBgif <b=i >r y vm<Dm\tmmwa c t 
mwittz imm i 4 icie«o n y f y v^mwm 

im#mi 8] MIBn yfy yfiJffl«ffifEB£#lcte*ite 

nfen >f y^mm^mmt, n yf yyfijffl»« 

nyf yyftffl@ftMR1IHfc »fflHBHft»tf 
fti^n yf yygvtfj 3 W$<D^-f tifrX& *) , 
Mi Bn— tfr V W X 5> <D n y f y y »f OT&ft 'If $B« 
gEffiSBSti* nyf yyf[Jffl#»iJ(S©^ £fc 

M!B+}--£X7°n/U^ 30 
tulBn— »f t*/ VfW 6 © n y f y y Of Offl^ff 'If 
gMJaSS**^ 3 tufBn yf y y ?OT*ISfiEHI3»0£ 
fitcfS CT, Sfi L fc n y f y y ftjffl fHStEE* IB® 
Stifcnyf yyfiJffl£ft1ffS»gHSaac:LT, ny 
f yyfiJfflfflKffllBOSS, £ fctiayr yyfOT@» 
ffiJIEoS^ &5Wif!lffl8»Jffi> fOTIS»fMI8, H 

T7 7 7?V- F n yf y y fiJffltSRBiiEUfJSfc&a U 
n.-iff/WXtc^LTiM^-rsffia^lft'S^i:* 

[M$£i 9] SulBnyf y^fiJffl«l|5giEBM(ctSlfl? 
tifcn yfy yfijffl&mc«> 

ftttzxyv'Cytm&m, -9— trxyn^ 
*rtfctt s f impsiuwi^b inrs^xy^y 

BufBn— if fV uxfr Bonyfy^ ©fU flJfcftffiBfio 
SM«ia®*%# 5 tuIBn yf y y fiJffl*g^OT«©§ 50 
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fstcjSCT, gfs Lfcn yf y y$JJBffR&ll!ftli:£fi 
Sftfcnyf yyfiJffl£^'lf$g©gH£aa£ LT> *y 

^y ymmmt*7?y ymmMmmmm® 

[HSS2 0] MIBn yfy yfUfflfflSSnffli, ^n 

y^y^mmmmm^mi^-yT-^T-y^m^m^ 

tuIBn yf y iJfflffiPi|EB^»©Sff tStJ < 7 «y 7"^' 
U- Fnyf yyfUffl«ll®iEW»©4fi!c«iffl^, talB* 

tLx^m^ctmwttmimi 4tctB««n 

yfy yfUffl*SMl7ft* 0 

[isst<a2 1] ifiBnyf yvmmmm8m\t. In 

§ u y tft mm l fc^MT-s t) > 

MfBnyf yvmmmmww<D%micm-3< rv 7°? 
u- Fnyf yymmwmmm<o^mm^ mibu 

y ^'lf fgtc ± o xnmZti&'jkMmBR&DWBK X 
v) , In yf y yf iJffittRfEnffOE^ttWKS^ft i: 
LTSSfTtSCfcfcftafc-fS&ra&IU 4tc|a«ony 
f yyfijfflmwim 

[ff5t?a2 2] nyf yy©fiJffl^f7*an.-+f'fW 
Xt, ISAn yf y yffiftfcttM tfen yfy yfijffl* 

D/tY^kft^-r* fXf At^sttS n yf yyfijfflffi 

SyfBn-Hff/UXti, 

MfBnyf yyfiJffl«tSaE0^»^Bu!B1f~krX7°n/W 
tufB^-ifX7°n/W^i, 

M!Bn.-^'f V W XA^Sff L fen yf yyfiJffltitKSE 
WStlS^^tifcnyf yy1fffi»ca^>T> fnyf 

7;W^A(c81*S n yf y y tc^jSf S n yf y-yfijffl 
tSPIiIBM£7 -v 7°^' u- F n yfy yfijfflttiRiiEWa 
£bT£j£U n-+f - fV^XfcWbTJMiS-ri l ®a^ 

hit-t %z.t £#m tt^nyfy y f mmmmti 

So 

[H5RS23] HuaBn yfy yfUffllfKglPWfct, In 
yf yyfijffl«ii5giE^#o^ffxyf ^ f y^mi-m^ 

MIBn y yfiJfflffiffiSEWtOSOKS^ < 7 -y 7°** 
U- F n yf yyfUffl1»SSE^S<D^J!ia^> MIB* 



(5) 

7 

y^yvnmmmm\cm^&mmmm\mt 
s y y ^ l fcmwLX'tb t> , 

m^yTyymmmmmviEmmmzmt 10 
Lr^ff -rs ^ c tmmtt zm>m z z eeKo=i 
yf- yymmmsfgmjs&o 

[IMS 2 5] 3yf-yy<D$m*i : 7%o=i-— *f-fW 
xt, =1 yf- y y fufflfcft flf $8%tStt Lfcnyf y yfU 

%mmm.mm^m^m.mmmxh d , 
a-^rv wxfr^ nff 3 y r y y mmm* is $ 
^# 5 n >f y y f yffl^fts H«aas**sffl u 

U 

RttSEtc* K> Suiea yf yyf'JMgW!»cDlESfttf 
ASS nfc c ^^ff i: Lt\ §{§ u fc 3 y f y y f Offl 
ISISSEEWcfEiiSnfcn yf yyfiJffl&#flWRfc8H 
Lfc7v 7°^U- Fnyf y»y«/8*WBSEiJ»*£« 
U a— 9" fV U X \z L T gft t § JOa^^ff f 5 $ 

m Mt % c t mm 1 1 % maymm, 

misBa-if f/WXfr6<D3 yf y y ©jpJffl^ftlf $B*0 

^M5aas*%# 5 tu!B3 y f y y ? uffl* w^sog 30 
fitcfscT, gfs 3 yf y y fmmmmm^tm 
zntczy?- yvmrntotHiMDSBesmt lx. 3y 
Tyv$mmmm<Dms., sfctin yfyvm®®®. 

t 7 7 T^V- K 3 yf yyfOT«ITOl3#££/£U 

Ho 

[1MS2 7] ftufB3 yf yyfOTttlSSE^mcl&iWS 40 
®-£?z>*y7jyfm®m, titit, it-ex/mi 

ffifBtiWiSfiiiu 

fulHa-Hfr V U xfr 6> <Dn y f y y ©f ijffl £ft UMBO 
gHfflfflS**^ 0 tu!B3 yf y y fUfflfHSSEHUSoS 
fltcjSCT, Sfl Lfcn yf y yfJfflflHSUWSfciag 
*nfc3yfyyjpjffl*ff«|g©SM«MfcLT, *y 50 
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5 -< ym*m tty^y ymwmvmm&m n 
mizmftLxjy y^'y- Y^yTyvmmwmm 
m*%L$Lu 3— ^uxicHLxmmt^m^m 

[11**2 8] huIB3 yf yyfiJM«ilSSEW*«, ^3 
y f y y f mmmmmnmi x y^47-y vm^mz 

msfumssm&mit. 

fufB3 >f y yfUffl*BfflBB»<MMIt»^ < 7 7°^ 
U- K3 yf y yfUffl*ISffiW»^£JjK«^ tulB* 

tLxnmz>®i$.x$>5£tzmm£?z>mxm2 5 

[11**2 9] Mian yf yymmmmuwmt. 
yf-yvmmmmm^m^z&mM&wmmt 
% v y?®m*imLrcm&T3c> 0 , 

tuiB3 yi-yv*\mimwm<D%m\cm-3 < 7 ? 

U- F n y f y y f Uffl«iPlIIB^*cD^»I^, MIB U 
5 , iin yf y yfiJffl*tlSE^»OiE3tt«K**ftf: 

[11*513 0] nyf yy«)jWM*ff4d3.— Iff/W 
Xi:, 3 yf y y^iJffl^ff^g^tStt tfcn yf yyfU 

fflffisaEw*%3.— y f v w x w u xmm? zv-^ 

xfujU^t^t^y^f-Hcts^x, nyf yy 

?ijffl«iiaiEW*o»fTjaa%3ytfa-* • ~yxf a± 

T-Hff^bi6?>=iyt!a-^ • Zfti?=rkXh?X, 
mrm<D a y f y y f iJffl^fMf $g%# 5 3 yf y y f ij 

ffl*ft^M5aas**s«-r5xf -y 7 

sit bfcn yf y y mmmmmvtmimitmm 

iftiw D SuSB3 yf yy«ffl«HBimi«)jEatt^ 
«K«tife<: ii^^ffi: bT> gfa Lfcnyf yy^ijffl 
itPiIiB^ttciB®^ nfc 3 y f y y % yffl^ft tSfs^SM 
Lfc7 <y 7°?' y- F 3 yf y yfijffltliffiiEWS^^ 

U 3— ♦ff f /WXt^LTj^«-r5Xf <y7°i:, 

[0001] 

C«W«Jlt5fiffi«'SF] *HBHti, 3yf yyfijfflffi 
Ifl->xfA, a yf yy#JJB*SPBea#}£> 
'lf$S©aaH, Mmcnytfa.-^ • t'd^AKMI" 
§0 Bf^fb^nfcnyf yy^SEfi-TSyxf A 
icfe^r, n yf y y ofiJffltiilSff fg^^^t?3 yf y 

yfijffl«n5iEws, ®mm®mm**m Lit 3 yf 

yyUcDgE^tiD, 3 yfy yo^iEfiJffl*K±t* 
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mt brcayfyymmmwmy^Th, xyj-yy 
[0 0 0 2] 

-?u??m. «*£77r-7x7T-£ (JXT, cn 
fi^nyf^y (Content) tH&) £\ -fy£-*-y 

DVD, CD, **U#-K^<D^i^ftiE1»itt* 
^bfcnyf-yyiftSfe^/Uc&oTtTl^o cms 
cD&IBIa yxy7«, 3.— tfomW-f TV, 
PC (Personal Computer) , £>5Wi^ 

[0003] mm^ixLXWmtn^uyT-yy^ 

\cm&znxft%.i<nrc*) , $>£W£a{s-Yy*7x- 20 

[0 0 0 4] ^-A7n??A, Wlfrr-*, H«r- 

MB, ffc^ ESifca-lflcttLTO*, V7r-7 
<Dtf-ffit)t%-DX^Z>o 30 

[0005] a— *?fctttz$\mm*mit% 1 00 
ss^nyf yy<Df%mmmx&%o $mm 
ftmum<D&mztiz*yy-yv*mBMi§hz>wi.'( 

mttznrcmmicz-ixm^iteyT-yyoym^itn 

frU ayTyvZntttZM&X&Zo 

[0 0 0 6] Bf^br-^fi, 40 

[0007] Hg^fb«fc«^{b»fc^ST-*BfHffb 

mtLx^t>$>% Vkmm^i b# 3 i: pwrnr v 
ofeoktT, iEjiw- Ft en & HfjffMas, 50 
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\c£% c r—'5'7f-tX%%m?5$><DX*h%<, 
<Z)ft£to&#£fcD E S (r-^HfWP : Data encry 
ption standard) tfi%)%>o 
[0 0 0 8] ±$©Bf^MlIE a^fkKfflV^nSBS 

t, *©w*fcis^T«H§m «^fbH£»r3 
[0009] $rc, m#<kf 3fc#teteffl-r5iB#{b» 

Kft-rsm^fbi**, *©»}£«utf4j*ufc4»Hi 
v^THs^bffia*ff a 5 a J: o TBi^jb^ 
nfc#««, *©i«^bJ!iSKffiffl«nfe^0fiafc*f)S 
t s asgjiK «t o t bjaa*^ Riffi * s . 8hb 

£Htt(c J: o TBI #{bSft;fc:fc*««HB»*#ofBA© 

« c ttf-et*. i«Bg^^©fta«& 

fcOfcti, WRftlSBf^ WlHiRSA (Rlvest-Sha 
mir-Adleman) BfHitffc*. <!®<fc?fcRg^<b£i£*?iJ 
ffl-T§iiifcJ;i3, Hg#{b3>f-yy*iEJla— tftJ* 

[0 0 10] 

[fWj| ¥ $LJ:9i:1-3KII] ±IE©=i;9%ny-f > 
mc*>y feSV^tiDVD, C D^f©|BSMM* 

tctsiw ur t, Bg ^fbn >y *a#-r 5 n 

©nyxyySWIfbLTiE^&a-- •ftlliftU IE 

[0 0 l 1] iE^J&a— •ftffcSj&WOWjfctt, -US 
«, x. « : n y r y V <omm%X° & % u y r > 7 7 n 

v^i ^ yt y 7it<Dgefi sdtciisEjaa^^f -r * c 1 1 

H^tT* ? i: fe * 0atet?0#£a&&'fe y y a y 

j/3y+-*ffl^Tf-?, 0iJ^{fnyry7feSv« 
3 yr y 7lt£Bf ^tib LTffl{B£lT& 9 o 
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[00 12] LfrU £<D£.5tS.&Wm&'<-Z£L 
ra~ >f <DV&M*ft ft ^Tnyf^^/clinyfyy 

fflT', a-+f'§con yf yyfiJfflttHtf «*ea"TS C 

fcA^tfts. -r&fa-Ss a— wiE^ftayf yy 

fOTItlSfc feo*^S*»ftWJ&r 5 ftfe, t^TOa- >f 
»3yf y>yfiJWStiffi£f-^-XfctettU til 
HflHRfcJS-^T, a yf y y $ fc« a yf y y «<DE 

flj%ff * o $aa# &b t ft § o 

[0 0 13] uOi^ftJaSs •fftfc^a— ♦fopyf 10 

-*f»tf flyi&W*fr < ft t), 3>f 

y y ©gaff, $ fctta yf y y fcoEMi&aoaWfcffi 
TStfSci^ftSo a— iftioTtt, nyf 
WOiflJfflfcftfc LTi3£2nfc»»iJ|S.ls HSIMffi^ 
* 3 yf y y A&fcgl L tz.\^imSL L 

[oo 1 4] *mw&. ±aowBjftt**Ta«nfc 

a— »f<E>ayf yyipJfflfiHB*, tf-VTX 20 
/p/U^Wra— tf^CWaf 3 c 4: ft < , ESfta 
— tffcfc^TOfcayf yyfOTfcRTfltfcU ??>i^ 

PicogMJaa &3W£#rfcft3 yf yycDlSA^ IS 
A^03 yf yy 51S SKS'cJv^Tllff t § C 

fcfcRTflli: Lfc3yf yyfiJJltiilSWayxf A, 3y 
f yyflJfflttffieSWBu &=fctff»«II§tt, Mtffc 
py£a-£ • 7"^ A £H#Vt Wilt- 
So 

[0 0 15] 30 

3 yf yv<mWtW5. v a-^ff/ fc, 3 yf y 
> yfiJffl*ff'tf« ; &^ttb/c3yry^fiJfflffiW^# ; g: 
a— if ff/ U x tc ft LTEfit 5*- fcTX7°P/ w * t 
«tU BufBa— *ff*/VXti\ tulB^-^X7 s P/W 

tft 3 yr y ymmmmmmmcm^ wt 

o mf£*G?% 1 1 tK, buIB3 yf yyfiJffltifPKM 
•fctufB^- trxyp/ w $re2&tt U 3 yf y y fijffl 
«H®SEW#ttsiw« n/c3 yr yyfijffl-£fr1f$8<D^H 40 
jaas#^fT-r5*BK*tt, tuiB+r-exyp^y 

tusBa— FfV^xfr £<D3 yf yyfUffl^ftlf 

$gcDgMjaas**# 5 KiEa yf y yf mmrnsm 

coSfiic j£ d x , SM L 3 y f y y f Offl tit 

KJSS nfc3 yf y y UfcT y 7° 9 

is- Y^yTyvmmmmmm^&L, a— *t*/< 

1" 5 a y f y y f yffltitPSWa y x f A fc: « „ 
[0 0 l 6] $54;:, *fg0j3O3yf yyfUffltiiESa 
yxf A©-gyM6*fc:6v*T, tufB3yf yvnmm 50 
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wmm&. ^{tny^yy^m^t^rctbcoayf- 
yym - Kc^mtLtc^mt^yf- yvmtttem 

U IfifBa— tffVUXfci, ex^n/W^ 
p»Sjg bfc3 yf yyfWfcllfEWfcKteiWSftfca y 

Tyvmm^mcu-orc^yT-yymmT'&zct 

<D$l%.%$kft£ tT, HufBB§^fb3yf >"y»offl#% 
L T 3 yy-yyMZm^t 5 flfoSTfc 5 C t: ^r#Hi! 

[0017] ^stc, *»nyf y^yfUfflffiPiwa 
yxf A<o-*fifi^fc*5V>T, fulB3yf yyftffifi 
Hf^fb3yf yy^^tSfcftoayf 

y^yg : k c^mtLtcmmt^yf- vym&Nn 

Ls MfBa— tff/Uxti, 3yf y^yfiJffllc^LT, 
BufB-9— ex^p/W 5.^(1 L fc3 yf y ijfflfll 
PSIIBS«tc|&tt$nfc 3 yf y y ffittfieo fc 

3 y f y yspjffl § frmwWfetiSM&nfi L , 
ISmicS-^^r, 3 yf y yfijffl^ff fc^o fc 3 y f y 

— y-r/VXrtfcJftHLfcata^T, tufBayf y 

[0 0 18] $?)tc, *56W©ayf yyfiJfflUPiWa 
yxf Afi0-HflS!B«K*vT, MIB3 yf yyfijfflfil 

yyH : k c£fli*f{tLfcB^§{t3yf yyH^lft 
bs MfBit- ex^n/W^li, a— ^'f/UXfcfcnt 
§pyf yyfiJfflfcRfL/T, §£3-Hff/UXfre>}Mtt 
^»ayf y^¥Uffl*l8iEn*«5»a SSLfcny 
f y y spJffl*ISSEW»k:ffiiWS n/i 3 yf y y f Uffl^ff 

HtfL, !pi®emt»^v>T> ayf yyfijffl^ftt^ 

o fc 3 y f y y f m ~?h%t oflDawi e» nrc c t 

fttUT, -9— VfX^n/W^HWStKS-ifVT, MIS 
3 yf y yfOTffiPSSEB^»tc^lfl$nrcBg^fk3 yf y 

[0019] *^©3yf yyfjffltliswa 
-yxr Ao-nsfiffiflHcte^T, tulBpyr yyfJffltt 
KIEWSKlSiWS ftfc 3 yf y yftffl^fflf Wilt, 3 y 
f y yjpjfflWHflsJIBIfja, 3 yf y yfijfflp^JHIi 
$B, ^imm^Wf^^ yf yyH^« D © 3 mwo 
^•rn^T'^o, MiBa— tff/w^freonvf yy 

of Offl^ff 'If fiO^M^aS*ti^ 3 yf y ^y f ijffl Wf^ 
$iJP1cd^M> $ fcfiayf wflfflSWWISoSS, » 
5VHifiJfflWMPI> fOT0Mg, R^«»)03i6fll 
r E §^HO / >ft< fcfevfn*^^*, MfB-9— txy 
p/ u HiJIBa— tff/W x^e.«oa yf y y (DfJ 
ffl^ffffi^o^gxaas^^ff^ huIB3 yf y yfijfflffi 
«;i«<D§{i^jisuT, tfc a yf y vfyflMtH 
IIH^#icsB^$ tifc 3 y f y y f ijffl^ff ft ffioSSJas 
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h LT\ 3^r>yfiJfflfflMIWIS<0SM, £fc&3yf 

n^^UtT L T 7 y fW- F ^ yf y y ? OfflffiPIICT 

[0020] ?6ic, *%h^cd 3 y-ry^yf iJfflffiPSWS 
yxf A<D-^lSfif£8ifi:}3V>t\ itfiaB3 yfy yfijfflli 

Piiifi*ic^ffl$ nfc n y r y y * yffl*ft t -9— e 
x y a ; w fcnt « mmmm\femm%&mm t? i o 

mf % mmmnmmm^ t?%*yu y$mm 

tr x y n / w tut Ha-if f v w xA^cnyfy 
y <ofijffl*ff tf *osm«is!S*%# ? mifBn yfy-y 
mmmmmvgm kjs i;t> sm l£3 yfv ^fu 

fflMP^ciEii^ ftfc ^ yf y y f Offl^ff 1S*H®£ 

mmvmmmmmzm lxt? y y u- f a y 

f yy*iJfflffiKSEE**£/aU a-ff/WXlcWL 20 

So 

[0021] se>ic> *^(D3 yy-y vmmmmm 
mmmmt, m^yr yymmmmmm<r>mi^yy- 

[0 0 2 2] #fP3©3 yfy yfijfflffiffiwa 

yxf Aco-llffifittfcfc^T, WfBnyryyfJffl* 

isiE9j*& yj-yymi$mmmmwicttfctz>£ 
mmmwrntrntz v y?ffimz%mLrcmi&.x*& k> , ' 

tuIB-9— £ X^n; U M!E3 yf y y ¥ UfflfcffiSE 

imi©Eatt«s«*ftfc Lxmfitmmxsb&z t 40 

[0 0 2 3] *f§BJ3cD3yf yyfijfflffllta 

s/xf Ao-itssJB&Kfc^Ts fufB3 yv-yy^mm 
3b*) s pyf yy©tt^c)lffl1-£>3yf yygt^Bg^f 

yj-jiY \um l rcmsx*& zct mm t?%* 
[0024] $f>(c ^mm^yy-y^Ammmn 

mmmmts mmmmmmnmit^mmmmx 50 
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y © *««fl l mfcx & s c i: 1 1- « . 

[0 0 2 5] ££>fc, 2 offllffitt, nyfy 

y mmmi a v a— if f / w x jsa3 yf yyii 
$g%fe« tfc 3 yf yymmmmmm^-^'U 
xEftbTEflrrstf-ex^n/v^fcfcWu Mia 

a-^fWXfci:, MfBnyf-yyfiJffllSPSIjEH^^M 
IB-9— ex^n/W^tc2l#L> Buia-9— ex^n/W 
tulBa— »f '-tj WXA^SI Lfcn yfyy^ffl 

3 yf y yflffli t ®-(DM£3 y f y y f: LTilgiJ$ n 
5 EH7;i>AAKH-f 3 3 yf-yyicftfctz uyy-y 

ynmmmmmttr y y?v- v 3 yf-^y*iffl«is 

SEHB#fc LT^b, a— «fTA-rxfc»LT^M-rs 

yfijffltiTOiyxTAtcg§ 0 
[0026] $p>tc, *^cD3yTy , yfiJffl*Piea 
->XrA©-HSIS!lB$fcfcv>T, MIB3 y^y yfijffla 
ffiSE^Sti, ^3 yTyyfUffl«ll®liE^»<o%fTxyf 
>c r-ro*?*€*^liP*nfe«fiK"efe 0 , SulB-9-- tf 

ics-^< 7>y y?v- F3yf-yymmmmm9<D%. 

[0027] w^cDnyryyfiJMlwa 
^xrA©-*iiSKt*v^T> M!B3yTy , y?iJfflli 
PlIIHj5«a, ^3 yf y ymfflflHBaBPfcMcaiSf 

tu!B-9— £X7n/W^ MfB3yf yyfiJfflWiE 
^•OSM^S'CJ < 7 -y 7 s ?V- F 3 yf y yf UffltlK 

M*©^5aa^, wibu v^itsfctoTK^n 
z&MmLW*<oto.Ute£ v , K3 yf yyfijffl mmm 

[0028] $e»fc, *ISB^cD^3cDiJffi(i, nyfy 
y ©fijffl^ffft o a-+f f v wxt, 3 yf y y fijffl^ 

fftiffi^tsifl urc 3 yf yymmmmmmw*^— «f r 
/ w x tc w l riBfg-r % -9— e x y a / w ^ t s 

yxf Atfeit-5 3 yf y yfijfflfltffiesK' D , 
MfBa— if fV^x«, tuaB3 yf y yfiJffl«ll®!IW» 
\£^y°tJ/U^lCMHU 3 yfy yfiJffltS 

aS*%H?rbx MfB-lf-^xyn/W^i, tusBa- 
+ffy wxs^onyfy y fijffl^ff 'If fg©^M5aas 

3 MIB3 yf y y fOTflMiBSogfeKfS u 
T, Sffbfc3 yf yyjpjffltSISIEW#KfaS*nfc3 
yf y y¥ijffl*ft1tia%«H LfeTv y^*i^- F3 yf 

mm? s ®m*Mj? ^nt^WLtt^yryym 
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[0029] ssfc, ^mw^yy-y vmmvmw 

§3a-+f f V s-rxttu ME-fr- ex:/n/U 5§fg 
bfc n y f y v SlfflttRIElflfflc $ ftfc n y f V v 

T3yfyy«*E#*S£ 10 

[0030] $e>tc, *^03>r> , yf<jfflfliEtpa 
Bf^tn yf yy *om? s fca&o n yf-yy 

m- Kc*mmtLrd%mt3y7 L yvm.z®mu m 

IB3.— »ff/VX«, 3yf y>yfiJ${cPgLT, MfB^ 
- M x 7°n / vr 6 Sfl L fc 3 y f y y f UffltfilSfEfi 
•tclStt 2 ftfc n y f y >y ? !lffl£ft1i$8 fc ft o fc n y f 

yvmmT&zfrmwwfeimznnL, mm&mc 

n yf yyfUffl^ft fctt o fc n yfyyfm 
[0 0 3 1] *fg0^©3yf yvmmmmm 

fim<D-mmmmicis^x, mm? yy-yvtmmm 

mmt, 5%mtayTyv%imt%fci£><D^yTyv 
tt: k ctt^mtLrc^mt^yT-yvMZfemL, m 

t y vmm ic& l x, ia-ff/w^i^ mtffiK 3 

y^yypmmMUmm^^U giaLfc^yf-yy 30 

mmimnmmzmtiztirz 3 yf y <y * mfkMt 

U WjaSJRfcitcJv^ 3yf yyfijffl^fttcfto/i: 

Ltv ^-exya/w^@#iifc*cy^T, MiB3y 
f-y > y^Jffl«iPira#fc^ffl5nrcBg^fb3yxy > yii 

[0032] £?>te, *%0J1<D3 yf yyfijfflliPSWil 
fiffio-fSffi^Kfcfc^T* fllfBn yfy yfUffltSSSE 

wmmmmim. ^yy-y^mmmm^ms m 
mmmzmtz^ yf d © 3 ^©i^-rn 

frf-fe ») > Mffia— »f t> U xA^on yf yvmm 
£ft ff ffico^HMg*^ 3 yf y y fijffi 

mmmm. mmmmm. w^mnzmmnn^ 

itufB3-if f V W xfr 6^3 yf y v cD^Jffl^ff 
1Sffl©SM«aaS**# 5 *uIB3 yf y UfflffiKSEHH 
ScogfgfctSCT, SfcLfcnyf yyfUffltllBSEE* 50 



&m 2003-8532 1 
16 

KtmznrcxyT-yvmm&ftffi m<D%.m.mwt u 

t, n yf yyfOTJBfflf&iKioSEM, tfcli^yf-yy 
ZmfiLXTv F 3 yfy yfiJffl«M®SEBJ»£ 

[0 0 3 3] 2 5^ #^<D3yf yyfiJfflMSWS 

fim<D-mffifmiz*s^x, wtB3 yf y^fuMiti 

n > u fc it % mmmifemwz&mgkft t?%>* 

s f yfflffipgf ij£«yi£*g 1 1 « * 7 5 w yf UfflSas© 
v^n*^%aas l ram^m wzt&, mm- tr x 

^n/^^{±, fuIB3-ifrV^x^P)C)3y7 : -y , yci 
fijffl*fffl» ffi«gM©iiS*^# i fu!33 yf y yfijffl 

mmmmngmafc ut, tfc3 yf- y >yf u^is 

ai: lt> ty^-fymmmmt^y^-c y$mmm 
<Dmm&mtffl$m.zmft lx t v 
*mmfflBmm*%.f$Lu ^-*fT/uxicttLxm 

[0034] ^mn^yy-yvnmmmmm 
umv-nMWimc&^x, MfB3 yf yvmmwvm 

Wmz, M3 yf yyfJffl«H®SEW«o^xyf -r r 

u> u MiB3 y^yymmmmmm^imcm 
-3<7v??u- vxyfyvmmmMmmtt&m 

<DVm*3kft t l x$m t zzt 
[0035] *%w<03 yfy ^fiifflfltisea 
^ffio-HflfiSI«fctev^T^ Kif33 yf yyfijfflttlSIE 

iEWSKK-rs u ytmmz&MLrcmi&x&D, buib 

■9— tXT'a/W ^fi, tuIB3 yf y ^ ?iJffl*ffiSEW# 
©SMKS"t3< 7«y K3 yf y^fiJffl«ISIEBfl 

•oisScfflU?:, ttiHBU y^1S«K:«toTBJfl«n5^ 
MaSEKSOttlEfc «fc 0 > M3 yf yyfiJfflJtffilBE* 

[0 0 3 6] SZlc *%m<D%i 4 Offl!lffi{±, 3 yfy 
^ycDfiJM^lT^ 5 3— tf~f vuxt, lAn yf yy|S 
«%«lttbftayf yyfiJ«*ll8BIB«*3.— Iff/W 
x tc w l TiBfsf § it- tr x 7°n/w ^ t s y x 
f Atcfcnt?, 3 yf y yfijfflfltEga^ ffiTfe 0 , MG 
3— iff /WX(±> huIB3 yf y^fiJffltiilSIEWS^Hu 
3B-9— e X > U Wcmtt U mm- MTCfu/U 
tulB3— »f f / W X*^ t 3 yf y y fijffl 
ffiPSIEBfltfctS«$nfc3yf y^1t^cS^->T, m 
^yTyymsttm-fO^ayT-yytLxmutx 
2>m~7)i^L.icmtz>=' yf yyt^j&r* 3 yf y 
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[0037] £Sfc, *&m<Dny7-yvmmmmm 

^jSO-HSHBSlKtj^T, MfB^ yfy yfU/MPIfiE 
^3 y^fiJffl«iKiEWS©^fx>f -r f 

n/W^i* jtuIB3 yf yyfiJffitfFEiPj^gfHtg 

[0 0 3 8] £5>fc, *f§B.S<D3yf yyfiJfflftPSWa 

WSti, 1^3 yf y ylUfflWraEifltfKWJtS-r 

•9— exynK-f $r« , fuSEn y f y y f iMPISE^* 
<D%mcm-3 < 7 7 7*7 U- F 3 y f > iJffl»B« 

BMUEqmoWEii:J:D, f£3yf yyfiJfflUPgfPM 20 
oiEattfltBS^fti: LT^frf SSz: k£#'$kiT 

[0039] *fSH^os 5 <DMmii, ^yf-y 

y©KIffl*ff*53.— ffVWXk, 3yf yyfijffl* 
ft tiHHfcteffl Lfcn y f y yf iJffl«HSaE^#^a— fff 
/UX(c#LTBB{it£tr-£X7P/U£"k£W-f 5 
i/XfAKfe^T, n y f y v f iJffl*ffiSE93*£f8fT T 

n y f y y ? Uffl^ftlf *B*# 5 3 yf y Ufflfcftg H 
jffl&gjRfcSHU §{§Lfc3yf y^UffltSSiPM 30 

IB L/c n yf-y^fijffl WP^tfB^^nfcn yf y 

v mmmmm t /cr 7 7?* y- f 3 yf y y *u 

fflffiPSSEHW&feKU a— •ffVWXlcttLTjMfa't 
[0 0 4 0] $5tc, *«^01fHW!iSSBO-^fifif8 

cd n y y ©fijffl*fM» iBossayigjRfctt a 40 
WEa y f y 7 mmmvmw^oy&mfcfc cr, sis t 

rc3 yr yy«ffl*HBW»EB»« nfenyf yyfU 
ffl^fftf m<D^m9SMt UT, 3 yf y^fiJfflffiPWI 
(D^Ms i: fctt 3 yf yy mjfi®%®m<0%M, 

gM©'>& < k tv-f nfr**ff trr v 77V- F3 
yTyvmmmmmz$.j&u a— ? r/u xjcw 

[0 0 4 1] *«woit*«iasi©-^Sfi!ii 50 
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«£*5^t, fjiaa yf-y ymmmmmmm^mn 
% *mmmi%.9m&&%$k# k f s * y f ^ ymmm 

LfcfiJffl*#tfBH*£*, MfB'ffWIgfia, tulBa 
-IffVW Xfr £<D3 yf y y <0?ijfl3*#1fl $fi©SHffi 
aS**ffaSulB3yf-yyfiJffl«lllliEW«o^fitf£; 
UTs §Mtfc3yf-yyfUffl«llllEW*tge^*n7c 

mmmt* 7 y-f ym®mm®<Dmm&ftm®%m* 

mn LT7 -y 7^V- F3 yf yyfljffltt ISIEW*%4 
dcU a— *ff f /W7 > tc*fLTjMM-r§^a^*fTfS 

[0 0 4 2] *^C0'W«aStO-^SfiSI 

fllfcfi^T, tufB3yr-y > y?iJffl«l|5IIIBSSa, m=iy 

t y vmmmmmmnmiz- v?*?* 

WijD^nfcPfiScTfeO, tuIBtfWISSa, tuI33y 

r y y jpjffl«nBSEW»©smta^ < 7 v 79 u- f 3 
yf-y y#jffl*i8SEW»0£j?!t«£\ «33B*?a*<o 

ttSEC «t Or-^&BO&^C k©Stg**ftk LT^ 

[0043] $e.(c, *^cD'ifgffiaaBco-nss^ 

«fc*v^T> tijfB3 yf y yfijfflfSESE^ffti, 
U y ^ '»IR^feffl L /c«i?!c7-S 5 , BulBlf «a»H 

MtB3 yf yvmmmmmm<D%micm-3 < 7 7 

y- h 3 >f-yy«ffl«l»Bfl«o4j«fflI*, ffl 

i D , ^3 yf yyjpjfflffiiSiEWffOESttaK^ff 

[0 0 4 4] $5(C, *«^©S6©ffl!lBpa, 3>f> 
ycDfiJffl^lf a 5 a-ff/UXi:, 3 yf-yyfflmgi 
fttf fg^tStt b fc 3 y f y y ¥iJffl*l®|iEW*%a— «f r 

->xf Atcfev^r, 3 yf yymmmmmmmomm 

a^3ytfa-^ • yxf A±-c 5 *WbJ6?>3yt;a 
. T'q^i.T^oT, fgff^03 yf yyfUffl 
^ff IPB£ff 5 3 yf y y f iJl*ftaHJaas*%S^ 
1 5 Xf -y 7 1 , gfs Ufc 3 y f y y f iJffl«iffiiiE^*<D 
^SEJaa^T-TSXf -y^i:, KtftSEfi:«t!3tufB3y 

t tT> §fi Lfc3yf yyf(JMIiPM£fEti£n 
fc3^ryyfflffl*fMIHI«Betfc7 7 77"V- F3 

LT^M-TSXf 7 7k, *G?5Zt*¥fWlt?Z3 

[0 0 4 5] *^cD3yif • TW^A 

a, eiJAff, ««ft7n^7A-3-K*^tfRl^43 
yifa-^ • yxf Aic^ttT, ^y\Za.-*vm&fc 
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^xmmmmmw, mrntm. m*.a. cd^f 

[0 0 4 6] *5»B©«5fc:fliOBW, #fW>fiJj5tf, 

»£*^T->XxAi:H:, $&<®&B®iil3ft&£#j£ io 
ftv\ 

[0 0 4 7] 

3yry > yfiJfflW3^X7 L Atc*t73&xy-7Vx-r, . 

to 

[0 0 4 8] a-ff/^x i o i«, uyf-yvitM 

DVD, CD^©?|4=SSB, IBilS^SBIlT- 20 

yf> v mmmzmmt % m'mmwzrcwt y> < 

fltfigO-b+aUr-r^y^SitSnTV^So nyfy 
*y BSfSx yf-ff-f (nyfy^fVxh'jifa-^) 

fcLTW-exyn/W:? (S P-CD) 10 2, * 

cfteiyf-i'f^ta-ffvux 1 o i iHT^ff* 
ftSr-^teiS^fcfcttSi-tfx/VXi o HJO-tr 

[0 0 4 9] +r-tfX7°nA-f (nyf^yfVx h 30 

UtTa-*) (SP-CD) 1 0 2ti, -fe+a 'J-fff" 

7^jfoa-ff/KX l o l fcJftTa^rvy* 
l o 3 a, Vr—\L7s7um9 teytyvfiT. 

h'Jlfa-^ (SP-CD) 1 0 lfX 

SJfi# (Manufacturer) 10 4S, 3-tf-r/UX 1 0 

l^SJg-r^xyr^r^T-fe^o 

[0 0 5 0] VX-h-tyf 10 5B, l-ff/WX 

i o i tca«£nfca-^'fv^x?^i^&$tt3ifc*f 4o 

7- KO'J JUS!, £3 Wi3— 9* f/WX« 

7 «giB) amftif, a— tfr/wxKwrsfli^ft-y- 

r-SaSfcUffTSo fggjEJg (CA : Certification 
Authority) 1 0 6 ttgiyf f r^fctt LT&W»fiE 
Bflf(PKC : Public Key Certif icate)^tf 1* 5 0 

[o o 5 1 ] ft*, a— tfrvux ioi, tr-ex? 
p/W^ (nyfyyri'Xhyta-^) (sp-c 50 
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d) 102, nyfyy^yx- # 1 o 3, a— tfr/i 

-YXSBBg (Manufacturer) 10 4, D-tf- h-fe^* 1 
0 5, ISfiEilj (C A : Certification Authority) 1 0 
6, Sxyf^f-i©aattlT'J63„ Iff;:, BiCfe 
l/^T, ISIiEIj (C A : Certification Authority) 1 0 
6£lO<D&^LTfc3#\ KSEStf, Siyf-ff'T 
TO jt&SKJS U T&B ft 5 &M«El!li»*l8fTf § IS 

[0 0 5 2] 3.-1fr/WX 1 0 Hi, ffiSjlfB, >f > 

jlfg*>y h7-^^LT-9— ex^D/W^ (nyf 
yyf^xh'j tfa-*) l o 2fre>n§mt2iirc=iy 
r-yy*&mu 3yr-yy*#m?% 0 ftmt^yf 
yvtt&ntzrctbcom : nyfy^l : K c ttu&^ffc 

©3^^y*yffl*KKlfl», mtfJUteSEHW (A 
C : Attribute Certificate) 1 1 0lc*&*ft£ftT* 

D, 3.—9*4g*i o \tfuy7-yv*m.^Lxmm?% 

tfa-*) 1 0 2frP>Jitt§EHJ§* (AC : Attribute Ce 
rtificate) 1 1 OfcSfiSU Wa'Jf^fy^ 
oa- »fr/WX{cfeV^TJSttliEW*^6.ii^t)lilt 
TflratSCfctf&gfcftSo 
[0 0 5 3] 3yf yyipJffl*lfiifew , r*HflHBIEIfi» 

^ LToayf-yysifflniiaBB* vmmvtmww 

(AC Attribute Certificate) 1 1 OfCte, Hg*§{fc 

snfta^fyyi: Kc<s>ffifc ^yf-yw^mM 
g£ftT*D, a-f f /^X l 0 Hi, ayfyvm 

mwmwmtLx<Dsmm$ (ao 1 1 otcta^ 
3 ftfc 3 y f y ymmmmc'&i fta^f^ ofjffl # 

BJt^ftSo 

[0 0 5 4] ft*, WT, HSfifi»J©S4WT?tf, JSttiEW 
t (AC : Attribute Certificate) 1 1 QKuy^y 

wmmiffl, ^mt^yTyvmzmLrcmi&t l 
xmmtztf, ^yryyiommmm. ^mt^y^y 

W» (AC) tcPlS-f, ffi.tOf-^7t-V7 hcDliE 

mmtLxmmmxh%o tawnyfyyo^i 
ntf, tt*©7 i ^*»so3>f : >yiaffl«iBKW»«« 

[0 0 5 5] ft*, -9-— ex^n/W^&3.— tf-r^ 

-rxKwrs3Vf-wE«a&«i/H4«ttSEw# (a 

C : Attribute Certificate) OgBM^tLTti, 3 

mfiZnZBMt, 3— 9 1 "£DS*cDW^^HBffft<flJx. 
tf-9-7*X^^^/^*tt^^53— ifKWLT, +f 
-ifX^n/W^S-^WtHSM-rsv^^S^y^ 
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[0 0 5 6] 01 T?if#iyf^f'f^ EliEM 1 0 
6W©x>f-ff^> tSt»^a-ff/UX 1 0 

1, -9— ex7a/Vf£" (nwyfVxh'Jifa- 
£) (SP-CD) 10 2, 3>fV7i"Jx-^10 

3, fc<ktfa-*f-f7W7.iy}g# (Manufacturer) 10 

4, ■y-tf-h-fey* i o soxyt-ff'fii, pJt£«^ 

tzrctb, &xyr^7^7-©©i*m£©/l<'--;Mcfi£ 10 

tM£LT0^L&</^>X7A;]vI/^ (SH:System Ho 
lder) f?&%o 0 1 ©1 0 1~1 0 5 O^xyf^'r-l' 
i/Xf-i**;!/^ (SH) cD^Sbfcnyry^fiJS 
^y77, ;l/-;l/©TT^xyx-if--CT*©5!ia^fi 

[0 0 5 7] $J*tfa-^TV^Xl^i (Manufactur 

er) I0 4(i, BiS* § a— 9*7/ ^7rt©i?y^l 

^TJiffl-rS-r/WX^lJ? (ID) , fc<fctf&a©Bg 20 

fliMifits. a-ff;wxi o 1, tf-ex 

7o/W^ (3yf>7fVXh'J l£ a-*) 10 2, 

nyfV7i")x-? (CO 10 3, 

i o 5fflx*<DxyTyv$sM, mmBmv%m, ^© 

iof-^rESiitfc^tB, ->XfL*;^ (S 
H) ©S£Lfc;l/-/l4cS-3t,>T, M^iS^Mtm 

[0 0 5 8] n— tfr/WX l o l ic&HZay 

t- y vnm k n t t a, Bttra» tetany nfcf « 
ph©ss $ nfc 3 yf y v <mm t ^ u t t/ w x rt © 

Wa'Jf^7 7©3iiJffllg|5©SiiJ8P©T{c, 3yf>7 

^tf-yxfi>*;W* (sh) -ess. 

[0 0 5 9] Htt!IBH»] 01 ©1M 

ias^xmmnz&rmmmm, iwtico^ 

[0 0 6 0] (PRC) ) ^M«iE^« 40 

03, 0 4*ffl^TSiWr5o £M»SE 
B||li, gJaEJS (C A : Certification Authority) 

©ID, ^MSl^fciBSEJafciStfJ-f 5 C 1 £ t) > SBSE 

mmmm<D\ D^w$»i^©tf$6%f#nu $6 

[0061] ^mmmm^y^-^y hw*02~bi 
t x. 5 0 9icmMhrcmr>&Zo so 
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[0 0 6 2] rt-iJa y (version) it, Um%7t- 
V'^hO^ay^t. WT)Vfy* (Serial N 
umber) it, 4>M»|EW»«ffS (CA) Cit)T«S 

*ft*4»WfiB*]»©s/y 7/w->^?fc5. 

* (Signature) it, UWM<0m%7)\<dV XhXh 

ii^7^-^fej;ifii^ai*n, r s A^3affl*n 

TV>3J§£fa4ltfttff2®£n£ 0 &fr# (issuer) 

it, ^mmumm^m, ?*w&mmmmmi 

m (I A) ©fc»tf»»jRjfl6fc}Ba (Distinguished Na 
me) "PlHS«n57'r-;l/Kt?fe5o WSWMvalidit 
y)(4, ©ES©#^J8IST'&Sllfl$&BBf, *!7HB3ftf!a 
SSftS. V7i?x</h'£Mtffi ^(subject Public Ke 

y inf 0 )»i, uwmmvtimmmtbrm<D7;i 

[0 0 6 3] mmMMftft (authority Key Identifi 
er— key Identifier, authority Cert Issuer, authori 
ty Cert Serial Number) It, ^St&IEfcfflt^tEBM 

Vfzsxt b%m%tf (subject key Identifier) it, 

m\*zitit<omY?&ii&Mr*o mmmm (key us 

age) 14, «©«fflBWftiiJ&r*7-f-/PFl?«»), 
(0) f ^y?;H«ffl, (DSSB&itffl, (2) « 
©Bg^ftffl, (3) ^<y-b-y*©H|#{bffl> (4) PM 

$mm%, (5) mmmzmm, (e)^uxh 

©S£«lffl©&t^gWtfiS5g2ft3o SMBaWJfllllB 
PS(private Key Usage Period) ii, Hl$§fc*&fflLfc& 
B8»li: *f JSt S ffifB«© WS» WS*IBS-r S - WMfm * 
ijy- (certificate Policies) 14, &KJ«SEHB»f2fT 

#©OT«fgtT*uy-^faiit^o «*tfi so/ 1 

E C 9 3 8 4 - 1 tC^PS&Lfctf'J J'-ID, KiUS*"?? 
S3,, jJ?Ui/--V>ytfy^ (policy Mapping) M 
fE^xtfi©#U'>-M^©ffllSKM"r51W««tSiW-rs 
7f-;l/F?$) | 9, fSK^ (CA) iEUHSfc©#&gfc 
^^>o ^7^x^hglJ€ (subject Alt Name) It, UW 

mm%%<Dm%*mut%7<<-)i< ft***. sfi^BU 

* (issuer Alt Name) 14, WWBifT#09J*«iai 
■rS7-i-;l/F-pfcS. +r7v>'x^h -rVU^hU • 
7h'Jtfa— h (subject Directory Attribute) it, 

^te^f *7-f— ;VF"C**« S*S>J*9 (basic Constr 
aint) t4, |EW)t*»©^M«^SSES (CA) ©g^ffl 
*\ IIH^#PiT*#© © jb^KB'J 1 5 ft 46© 7 w -71/ F 
7-S§ 0 'J -SJ^ (name Constraints per 

■itted Subtrees) tt, ffiigtfffilt %mWW<D%m 

mi&Mim*tiMi-f&7 j -)i F-ea&So 'J *>- 

(policy Constraints) it, SiE^Xtf ©*U ^-©M 
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«cD»tf mZfemt 3 7 4 FTfft*. C R L »gg 
jjN'Oh (Certificate Revocation List Distribution 
Points) (4, SE^«mW#*W^»*?iJffl'r«ISfc, 
KW*jWIc» LTV>fcv>ft\ £ 9 fr*«r*fefc©* 

m&TfrdVXL (Signature Algotithm) fct 

mmm^mc^b^^yamm 
[0 0 6 4] EE^ti, h 2 ~h 4 fc^-r^iiaiiw* 

Xh (Revocation List) CDfM, WS, SB* (Ch% 
U^y— ->ay : Revocation i:^) £!t5o & 
StcjsSCT^il-tgmSlO^fctT^o 20 

[o o 6 5] -7i, £<D&ffltmmmzmm?z>mz 

j^b^ttic^ttEn*^&&PMi%ft»)mu sis 
xmm^ts nm<Dmmm<D / m&*u&Lx^z<& 

Ilft s $>3o 

[0066] mmmm (ao) smw^o^ 

TBI 5 *ffl^T!^-f 5o KttfP)i#U±*t < WT 

fc^o io«, -9--ex7n/^^ (sp) mm$L 
muzrcimmmmmsmm (ao t^o> a.— y-r 
/Uxrto^^utc-^-ex^D^^^ (sp) fflfps 

[0 0 6 7] SttSE^7*— btilTU-T X.509T 
fflS^nTfct), IETF PKIX WGTProfileMELTt^ 

h\ LfrLM®M$}9MUM (Attribute Certificate A 40 
uthority)CDg£^O^Tt^?>fci6, B£K£nT^&^ 

[0 0 6 8] ^©Wcfel'Tti, JlttiOT (A 
C) co^f^a^f* 9 SttlEW#^aE^ (Attribute C 
ertificate Authority)^ ^-tfX^n;^^ (3V 
fyyfVXh'Jlfa-^) (SP-CD) 10 2*1 

mnmiimc'mmmmmm-ittxmmtZa -ra 
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if Sire v>5 £MttEH*«>4ft£ fe fj 3 o 

[0069] sBijwtc{iaEw«a«*rc 
o T«±<ao^Bu »aEw» * Tfuc^iE^iiss-f 5 c 
tifmLi\ mmmuM (ca) ##ftu mmm 

T#&s*vtvs. TJio^nftrorosfr 

JH (CA-Low) fcWtT±ffio^BMW»WBfiffJa 

( c a - h i g h ) ft^w»giw»*5s^-r zt^sm 

mm. t it, TUfr t> ^{t^mmmwt rcZix m± 
i±<DtemMmm£x<DmmmmwLx, m±a 
op- f- c a) $x<D&fflmmww<»m%tfm*fi%o 

[0070] mmmmmmm^mmmt-r^nt 

CfctfT?*, i/XfAATOi:§583r^l= kith 

mm^mm k *t l t \t%mx^m 5 ^©3* 

mm^m^h J xis<m^.x&^(ox\ jE^^yf- 
yvmmmmtDh^-ifT'UTs^ lEmmmiw 
mzsmtsctici;*), nyy-yvmmoimx^ 

[007 1 ] H5 itttm&ummvM&ic-o^xmm 

©^—y a y£*-f o a c fimo&BMBEimim 
cn««ttfiEH^# (ao <Dfffi%fcttRt%'£Mmm 
is (pkc) icm?zmmx&*), ?Kc%m%, 

P K C V U PKC HfT«@WlffiSiJ?H©'ttffi 

iE^so«ff#, ?*t>%mmmmwM.m (a a) © 

*i»^i«giJnIffia^S (Distinguished Name) XtMlE 

mvmvm&Ti^) xi±mm?mm? % 7 -r 

SMJ60i^, »TB^8H»sn«o Btt'fflS7^-;l/ 

Ktt, Mtt»fflio«ffl*lwc*si;r» (1) ttvm 
mmu, mmtm. ^rc«, (2) nyryvnm^ 

[0072] ( 1 ) * * y »wtfii, HUI»«$Ht±, -9— 
0 * y fc -9— ^ X 7d / U ?«0ffafitt£5ffl6 
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*y-\i7,-7u;u ?m\i- (I D) 

+r-fcrx7 > n/U£*- 

$aa : * * u ^«««. ^ * u nusBij^o^f n*^ 

®#1MX*: ^t'JWO^X 
[0 0 7 3] ^- exyn/U^I±, ±!3&«g ; £Jltt 

[0074] (2) ayTyvmmmm^mt, 
- tr x 7°n / w 2V)Ji«f 5 3 y r y v K ttffc L T58fr 

■CfcD, ayf-yyofjffllWIRHR* fUfflSBIS^oStt 
fcfijffl£tt*£#, £ ££3 >r y y fcBt^f fc Lfc n y 
ryy»OHS#fb7*-^%^ty 0 IBlStiS^ &m£M 

Tenure**. 20 
+r-ex7o/u^«? (id) 

7'/uy-ya yfiBiJ? (ID): nyf-yy^UB'JIf 

^ff : *y9-ryfijfflnyxyy*\ ^^yfljffln 
yfyyfr, Hv^onyf-y-y, »»ji®3 

homi® n y-f y y vf n?* 5 tf $st-& 

•So 

WMMQIS : JBIBMIBoil^oftttMllfilt $8 ' 30 

: ayryyoWfiSOS&^feft^ffiS 
nyry^Si : Bg^fftS n/c 3 yf yy»*fl&*f{t7;I/ 

[0 0 7 5] ayf-yyofiJfflffiflUcti, ±!B*ft7^ 

(2) *7^yfiJfflfr©EB'J^ (a) xyy-yy* 
Wi^D u m^WK>w&<D^y c ry"Am?k7V--t 
tmm, (b) mmmmmx=iyTvy<Dmm 

lffl*«£Lfc««L (c) [Hiafflffi*»ttT 3 y-fyy 40 
[S f: @»»JS© 5 3 y tf y a y^JEIStt 

c n s coii^tc $ o t 3 y r y y toftmftgffs ft s ° 
[0 0 7 6] $fc, ®mtuy7-vy<D9mMi:Lxm 
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TMVX&Zo 

(a) 3— yr/WXtD-b^aUr-r^-yyo^-tr 

ffiffi«Kttjs , rs i 9--ex7n/w > *' csp) »t- 

y-yiNPJH : S C. Stopub. SP. K, 

(b) a-lffVtYX(D^aUf-^y7©&-9--e' 

x7n^y ^wsM«}c^,tt^nrc s pmx b u-y* 

It 

(c) +j--tfx7o^y^o«^-r^ffi^ : s p. s 

t o. K 

(d) yXrA*/^ (SH) i:3— fr^yxT-ttW 
^S«fcLT£$£ft5^n-^/l/£3I8i: Kg 

[0 0 7 7] JBttlEW«Ktt, se>K> m%7>idvx 

h&mm tu mmmmmi^x&^mmmmm. 
m (a a) tc«toTa*«<fissn«o stt 

£fi£U *0/Ny^aHt»tTllttKIIW5ifT« (A 
[00 7 8] [•b^a'Jr^f'y/'M ^cn>f> 

y *f ijffl -r s '[ff«asH l x ©3-if r / w xrtfc 
^saa^atLTwcpUx ififfi^ii^fcpc, v 

-A4B*, DVD, CDfoSSSR HBiSS^SB^ 

mMoJumizis^xfflffltz* t** 1 )?- 

03— ifx/WXfi, 0 1 fcfett*3.— IfT/VXSjfi 

# 1 0 \\z&^xwk-£nz>o 

[0 0 7 9] 0 6tc^-T<i:5fc, a— *frWX2 0 0 
tc(i, -te*aUT^<y72 1 0^ 3-^rVWXliJ 
«PiS2 2 1 tc#LT, fflStc X-^tKjiRltg^^i: 
LXfiMZftZo -tr+aUr^^-y72 1 0», ^a^7" 

7i»nnwm, mnwmmzft-^cpu (central p r 

ocessing Unit) 2 0 1*tU r-^jlfefflO-O* 
7x-XHt^fOfflfgyy^7x-X2 0 2, CPU 
2 0 1 £«koT*ff£n£&a7W5A, tWA«B|^ 

-81 : Km^if?:IB1t1" 3 ROM (Read Only Memory) 

203, mi~?v77L><on-Ymm, 

7Lmmci3tf%y-tffii&tLXMMtZ>RAM (Ra 
ndon Access Memory) 2 0 4, HmffltomUKM* 

fbSaaH©BgWl^^Tt§B§Wlgl5 2 0 5, BUji 
Lfc+r-ex7n/U^S©fffB, #8®r-^^t? 
T/U XOHW«**«Wb^J«.tf E E P R OM(Ele 
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ctrical ly Erasable Programmable ROM) i o"Cl#J?5c£ 

[0 0 8 0] a-ifx/wxzoofi, Hg^-jtnyfy 

y9&ttM?*HtK£UT4>E E P ROM, /n-FtV 

^m^^xm^ri^^^^z zzz^t 

vmmmt tx^mm^mxho, zitmczwmt 
^uy^yycommmmmyr^^^mmmtLx 

fciflJfflSnSo 10 
[00 8 1] ttaVm-V/ZtStilLttZL— 

iSUT, Wa'Jr^7 7'2 1 0t, ^gtfxyf 

[0 0 8 2] a— tfr/^X cD-b^P a 'Jr-rf-v ^T«) 

OE E P R OM(Electrically Erasable Programmable 
R0M)K J:oTlt^$n§^ ; & , Jgl3 2 0 6fc*&iW£nS 

X.tfvX£-||: Kmli> ROM (Read Only Memory) 
2 0 3(C^«$n§o ^1®I£m RttlEW»W> -t 

[0 0 8 3] Sf-^fco^TSfflW*. 
^BB«IEW* (PKC) : ^BBaBEWStt, £H#te*f 

*\ a-W^XftE^USt^W;* 
tiX v^**— tf X 7°n/ W £"©&P>BHaEHW> $ S> E > 

[0084] HttiPM (ac) : ttmrnmrnmiw 

*PJffl# (fifftNf) © "*Att" ^1"OtWbv Btt 40 

nwmmwmm%<»mmmm*m-*><»xibz>o m 
mmznrcmm • mm\cm~3^x, 771) y-^a y<o 

to 

[0 0 8 5] (a) 7yy T~ } y a yfMSfflBtttE 
UB* (AC) : 77V>r-: i/ayttis HWcSfcft* 
a >r ^y*j£v^*ftT?fiM UfcSilT-S t> . 7 7U r 
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mmmmmmmm cao 77y*-s'3> 

OfiJffl*l8fcMLT03Ei&tffc»>, JUttHHH* (AC) 

^-trxyn/w^ (sp) KMLxmmLxmu. 

(A C) tCfB3Zg$nfcfiJffl«Plli5HrtT?cD77 , U^— S/ 

3 y^fijfflf^^#5n§ 0 77V >r-~y 3 y©fuffl«i 
lEfcllllf SiEi£i:LTf±, 77>)>r-is3ycD*y7-r 
y f uffl a we* s fr* 7 v#Jffl ^rJ^t * 5 *>\ 

ftfflJWWfi, fiJffllHiaMISffifS^fct), *77f>fcl 

[0 0 8 6] (b) -9— ex^n/war (SP) ffl** 
UfffWI (««) fflHttEW* (AC) : a-+fr/^ 

Yxtc9--ifx7n/w^ (s p) *sgt*«£, s 

P fc Ml" 5 'If «1feW1S«*3.— »f x> W X tc««t 3 

(AC) KteiWU a-ff/WXT1i> RttSEBJ» 
(AC) {c^lft^nfc'fffBE^oT, a-ff/WXrt 

[0 0 8 7] (c) ^KX7n/V^(SP) ffl« 
UfflKffa (ftl») fflJSttSE^# (AC) : a— >fr^ 
^Xrt(c5|fSLfc S Pfflfg«OiJI»Off«i«**«tftL 
feJlttSEW# (AC) a-ifx/WXT'ii> m 

mmm (ao t^^n/iM«tc^^T, a— >fr 

[0 0 8 8] if-^ : M-T-ZtLXli, f/WXK 
Or-^ffi#OBS«DB|#«iaffl»ii LTffli/^nsx b 

[0 0 8 9] xhU-m T/WxicUfttZzy 

7-yvm<D^{t*rc\mn\mm<D'p%. < tfev^-rn 
fSx h u-^it, t-ex7n/w«x b u-^it 

-fX(cS^?nfcffl^©-9--ex7n/W^»fc#^— 

•T5-9--^x7D/w^<Dii«'r5n>Ty > y|iEWfS 
LTigffl^n?.. r/wx^jiSxhu-^aca, ^>x 

trx7n/U ^fc^tt s «*t {kfcyi* Kit t fcww 

[0 0 9 0] WMflNR : «S'J1fl«fc bT«, a— *fr^ 
YXg#(D^'JTi: LTOf/WX I D, a-^rW 

xEB®u/c-y--ex7a/u^ (sp) vmrn^tL 
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%=l— «flc^#?nfca— +f I D, ftfc\ a— I D 
—9*1 DtffWJffiTfcS. 7^U^>a>I Dti, 

■9— trxyn/^-Y^ (sp) tr 

•So 

[0 0 9 1] ^<Dffi : a— tfTWxKtt* |g 

p/W* (S P) 'tffg^iJ^l^lfSfcJ6cD^!iE'[»fS 10 
(tfiRff^xy-F) ^ffittStiSo 'U7-KtAA 
f 3.— Vr'WZ.faKW&Ltz.yr- tTX 
yn/W^ (S P) «$fi<OBl#35)< njfll «: 0 , 1f»# 
£ X "f n/ Vf ^OflKK-T 5 7 7" U 5/ a X 

n^r^yoflfflawsfts. fgfl'ttffi 

F) fcSftfclf^teW:, vX*-/<X7-K£fl§VTfB 
SEKHR (^X7-K) (DWmit CJtyh) SQSAW 

[0 0 9 2] £6fca»ffijaE©->-Ftt*tf*&W2ft 

SI X9. 1 7fCf£oT£jjSif 5o 

[0093] $e»tc, n^r^yfijffliaaif*, fc^v> 

ttnyf y7?iJffl0aff$B^S^VTltm2n3/vy~> 

ai*w?n§„ una, r^u^-^ay, nyf 

■v t nifHH w k t * ^ c 1 1 m&<»%)% tf& 
[0094] [a-ff/^xflo^^'jii] ?mft 

tt^tUO-ff^T-$>§77'y~>i^ ; eU^cOE E P R 
OM(Electrically Erasable Programmable R0M)(Ccfco 

g|52 0 6^«tC^tima^n/c3O(DM«, tftft^ 

( 1 ) TWxwasgB, ( 2 ) wrj»mmm. 
(3) ^-ex • ^n/vr^nranB«fcB:»*nT«wi 40 

[0 0 9 5] (1) f/WXfili 
T/WX I D 

n3s&am 9 s-\ t so 
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[00 9 6] fflSSSEaiti, Wa'Jf^77'rtCr 

^tft^xy-rf T^fcoSIEfflOji-efeS. ft&\ x 

-mm, dvd, cDHcos^H, iBtss^SB-e 

+ a 'Jf-Cf'V 7*f#oa-+frV VXP|-e<Dr-*te 
5e.{ctta— «f7 f /WX^Lfe^g|5©-9— tTX7 
a / U ^ i: cd r- * a B#ft if tc fflSgSE«* jiffl L fz 

[0 0 9 7] f/^X^fSXM/-^Itt, t+a'Jf 

x • x f feasant 

[0 0 9 8] «IfVWX^X F X/- 9 Jma\t, 
•>XfAt^t, x/UX(0**^WrSSIi: bT« 

ti, -9— ex7D/W^cfe^5tt^bJaa%Bi5±Lfc 

5. 

[0 0 9 9] ( 2 ) v'Xr Asasi« 

;l/-FfF>siES (CA) ^fflUflBM 
rVWXffiSM 

[0 10 0] rtz-F^iEja (CA) ^MaiSE^*«, -t 
^'Jfi'^ ^©Ifll^-r^T^tSM^ft^lIBM 

fffto^, JS^fctt/l'-FSiES (CA) ©^fliEf 
StciUiD* < cliitcftSc 

[0 l 0 l] f/WXMlPI»i> tr-ex^n^ 
-f ^* t Offl SBE^C ffl <^ 5 ^M»iiEW*"e I.. =r> < 

7*/ w x^gaitaEw* t n§ 0 r> <w xiiy 
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[0 10 2] TtU7Jm®!&s T-$KttLTm%tt 

[oio3] o) -9— ex7n/u*nsg«« 
■9--trx^p/w^ (s p) ©aSH^ tf-ex^n 10 

/Vf* (SP) War-^i:^- \ZX.-fu/W? (S 
P) Waitfflfcfr&fcS. ^-exyn/W^ (SP). 
fgr-7;Mi, +f-eX7'P/W^ (S p) safgtf 

txyp/w^ (sp) it«©mft?r^-rfc 

««T^*UO#"9-- ex^p;W^ (SP) 

[0104] ij— ex^P/w^ (s p) mm 

mat, a-ifr/WXA^-exyp/U^ (sp) 
mc£MSii£ff5;: ^-vfxyp/w^" 20 

(sp) soiB«w«7*/wxrt<o^ ; euiR«K»fiisn 

IBiEfcS^V^T^tT^nSo •9— M7,7u>U$ (S 
P) §g«c(i, WTOflHI*fiWr*- 

[0105] -9— ex^P/w^ (s p) 
■9— ex^P/w^ (s p) *»sx h u-^as&a (a 

■9— ex^P/w^ (s p) m^vu-ism (#mm 

nmmmn<D^y^a.m 30 

p— 9Mlf$i 

[0 10 6] +J"-eX7°P/W^ (S P) WJiSfilffi» 
t±s Wm-\Z7,-fu/U? (S P) Sic^bT^liSt 

LfcS^-9— trxyp/v^ (sp) fcotBsssEffla 
u<D^7<DimmT°hz>o &m—vx7t"u# (s 
gii-fssre&So 40 

[0 10 7] -9--ki - xyP/^^ (S P) MXhl/- 

s>immi », ^-exyp/w<7)}i#t 

^ m.mLfc=iyf-yyzfimtzmcy- 

}±7,7u/U#£<DmK*>&ntL-%.^uy7-yvx%> 
/vr# (sp) 

x7p/w#' (sp) mxhu-^Hiiaot^ 

-^X7P/U^C*3^T^fb$nTSttM» (A 50 
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( s p ) h u- vwmmxm^ Lx^y^-yym 

[0108] ^-trxyp/w^ (s p) Mtsxn/- 
(«ffl®^s) t±> -9— exyp/w^o^-rs 

ayTyy%mz*77^yx$mnimx&%i§-£;, f 
xh%* it-ex^p/U^ (sp) ftfSxhu 

(&KJ»£i£) fc, +f-t£X7P/U£" (S 

p) *fjsxhu-s;a (#3i*#5© «> i^-fn^-^ 

[0 10 9] ni5Sai1S*0^'y>a (Hash)l 

a fitc j: 5 £a# * t & §0 @i&sap >fywi 

[0110] ziyT-yvmmufmm?—!? 
7-fvr—yay (ayryy) <Dmmm®w*-t* 

D, KttfPJlS (AC) 0»U7;k $ma!1fe®&t* 

[0111] mtmm 

mwmtit, y-\£x-7vu# (sp) mmmx 
m%zn&mmmzumirzm<oii;mx&Zo p- 

■ifa^-tfx^p^^^ (SP) mfflfticii-*- vfx^ 

SEt&gfcfiMsti, ^-vfx^P/w^ (s p) ea® 
«(cigffl^n^c coBafiiw^e^aiiiHiSBWi"* 

W^nfeJi'&fcti, -9— lixya/W^ (s 

p ) gas«<Dgais«o?>jffl^*^ a na < a So 
t*#5o cneojuattfiKfco^Tii, fter^nwicK 

[0 112] a-ifM?fi 

p— »ffif$S«. t-ti'XT'n/U^ (SP) tc£D#JD 
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[0 113] [^X7-FWS] J-XT, 01iw^ta- 
Ifr/WXl 0 lt>\ Wryv 
fVxh'Jtfa^) i o zvmmz^yryyzg: 

fflfc#^07*fcXflJ18Pffl©§^1lNH (/SX7-F) K 10 

[oii4] en mm® c^x7-f) eisffia 

a— !ff/WX*IXlfta- WWf A*;l^W 
(C-9-- £x7n/W2"ea«£K5£U CWf-ex 

7 , D/^^ , ga^«tc-9--ex7p/w^s©wa'nfg 
^tsifl-r 5 ®atf*&g i: a & . a— *rfW x <d * * 

[0 115] ^-ex7n;^^fi»#ogg+f 
-E - x7n/^^icWbT, a— VfiUTdfTt -trX 

ti> ftt\ a-^r'/WXrtcD-9--ex7n/W^ga 30 

n/W^iMKli, a-iff f /^Xii-9--trx7 , a 

»}, ctxP»cO'tff^M#bT^-U'x7o/^^i:^ffl 

[0 116] CWt- \£A7u;U?mmmc7>7t 
x*5fcfc£a-Hm&Sfitf-ifX7'a/W^«fcK 
££ns§SHltf *(^X7- F)S\ a— 9*f7WX<DA 

<Dt$fflfcl3^X, Ptf-tTxT'n/Vf'^&KJ iicOgBJi 40 

r#an^-ex^^o#a— tfWJ i:|l|«T*fe 
£o -tr^aUr^^7 7WeA^/^X7-Fta®^X 
7-K©-»$ftlEfcfi : fcv\ -Sctfc^tcRSO, -tr* 
=l U r 7rtO/* 'J fcflMSn/'c-t-tfxT'aA 

tr x 7 a / W t OfflSBSE&gL ^© 7 * ■feX^pJtk 
£&3o 

[0 117] IfJEIfR (MX7-K) It, a-+frVW 
X(cS^$nfc^-ex7n/^^«tcS^$n5o £ 
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So /<X7-K<DfflfflS^i&3£"O^T, H8%#!5SL 
a'Jf^7A fcW 'Jf-ff-y ^ioa- 

■9* r > xfcfeit 5 a-if-r y * 7 x - xffl0«yn?8 

[0 1 1 8] Sf, (1) 

£-r 5-9— ex7"n^ w Lxmtm® (> <x 7 
-f) wwafi«aaM<i&s**3.— »f^A*-rs. 

(2) *.*3.*)7-<<i-v7mX>\,t, a— !f<7)^Lfc-9- 

mx7— KiS^^tiTv^v^S'efes^ox 
x-#xfig^$tta£ff&t/\ cn&^sts^nfcJi^ 

C, (3) S3E11NB (^X7-F) fflllllKiTSJ 

[0 1 19] ^tc, a— 9*tta— 9 ! Vy^7x-XU^ 
P,^-#-F^coA*#©^t, (4) /U7-K* 
A^U (5) •fe*a'Jf--ff-y7 , ©ffl»ffit±A^tn 
fcfgtE1tf8 (^X7- F) ^f>^7 U t ^ U (cMf 
t, (6) ra-/<X7-KOSA*S**fi : ftV\ 

(7) a— iffciOBWWB (^X7-F) <m\1ift 

Kzn&ts (8) t+aut-f =f-v?(D%fflmtnA 

LTSSfSliE'ffffi (AX7-F) ©»&*«ffU 18^ 
^fiKiLfeii^ti, (9) BSE** (/^X7-F) O 

*fi&**aa*nffu, (i o) •*iMM8**a— 9* 

(CjM^L, OK^&^T-TSo (ID NG©Jf£«\ 

( 1 ) ©jaatus. 

[0 12 0] (2) BKItHB (^X7-F) iEH*aa 
09fe«ktfH i otc/^x7-FcogMsaao^-^>x 

fcgMJaa (^ms#) ©2-7ojaa^*^5o 

[0 12 1] ff\ 09CD^-^yXHfcS^'^T, a 
^BfcD/^X7-F^M©a M5&/SX7 

U r f f - f 7*, £ W-fe* a 'Jf^f7 7**»t>a— *f 
x> W x©a— 9V > ^ 7 x-XlMa^SSo 
[0 1 2 2] Sf\ (1) rtX t 7-\ i m£W}Mtt&t& 

sw^-r s -9— ex 7"n/ w t r sseissi o < 
X7-F) gHjaaBa&g^a— mxtitZo 

(2) •b+a'Jr-f^«y7'«BTfi, a— 9"©«iELfe-9- 

-ex^p/w^^^r'J cwiw«*fte«n«w)if 

^£D-9--tTX7n/U^ (SP) -?&fA /^X7-FO 

aa^^nrcs pt-ss^foxf- ^x^^aa^-r 

£V\ cn6^8t^nfcCt«:*fffctT, (3) S 
SSf*OKSE11lf« (^X7-F) A*S**fT*9. a 
-If «a-+f - Y y # 7 x -XlJ^ 5 K3p© Art 

mWtftU (4) §SSf*^X7-H*ArtU 
(5) Wa';f^f-y 7©SiJ®gP« Art % W8t « 
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SBSifff (/SX7-F) t<Dm&MM&mi**o 
[0 12 3] m&fimiLfZts (6) ^hmw 

-m<»\ttm:fxu (7) sjffe^KSEfis* 

7-F) fcArtU (8) •b+a';r-<f-'y7 P £D$iJ« 

tiArtsnfcgiEitffl (^xv-F) ^fy#7Ut^ 

t'JfcfliftU (9) |-/W7-FOSA^g^fT 
(1 0) a— >ft±t)g|E1tffl 0^X7- K) O 
UXtltfKZtiZt. (l l) •fe+aUr^f-v^OWJ 10 
««SA*fSfflfffi (^X7-F) fcf^7'JI^ 
*UCfi!»bT**iaBEflH« (^X7-F) Ofig^*^ 
frU Lfcif&KfcJ:* (1 2) ^RE'WfB 

X7-F) Ottii&ffla^TU (13) *#5i* 
IS**a-1ftji»t, 0K&5*!7-f£o (14) N 

Goii^fi, (i) vmmicmzo 

[0 12 4] (3) VX*-MX7-F£ffl^fcfS!iE1i 

$g (/sx7-f) u-fey b^aa 

Hi 0©v— ^>X0lca-3^t\ MHM<D'<.X 

7- F^M5aa^i^*3^T^ff $ni>-7x^-/U7- 20 

K*fflV^Wtt1WB (^X7-F) ^7«lto^ 
0 f -r f - <v 7°^^oa-^rV^ X%S* LfcS*tc*5 

tt § a— yv > £ 7 x - xwi-eas 5 „ 
[0125] £1\ (1) /U7-bWlMiJ;4 

(2) Wa'Jf-ff-yyiim 3.— •ToiBJfcbfc'* 

- tr x 7 n / w *w * u s nassf 

^co-9--ex7D/U^ (SP) 30 

s^s n/-c s p T&s frfcxf- 2 xfitK&aaafcfr 

cn&©*ff*WSt5«^fi:, (3) vx*- 

OAA#a*/H, (4) V 
X*-^X7-F£A*»U (5) Wi'Jf^f-yT" 
©$ij»gpt± A£ £ n/cTX #-^X 7- F £> JK^Bia* 
HItU EU^X£-/SX7-FcDA^'?-a&Sfrgfr 
£¥iJ£U fcH4)*SSI, EL^vX^-^X7-FA^J 

■efcsfcwjrrs^ (6) -9— trx7a/uwMR 

«fc#t&$nT^*S8BSE11Sffi (MX7-K) Offl 40 

nut, -rat>*fflswf*BiEiiWi (>*x7-f) ay* 

[0 12 6] t+a'Jf -TT 1 7 7" 'OW1B8P» > U-feV F 

aaa©^ (7) ws*aa^3-+f(caab, ok 

T*&fttf> mz.lf, 3— !ftiBfii£>Miffi (^X7- 
f) efiiaafc^rrs. Ett^oaiati* ftic0 8£ 

§0 (8) y-fe-y Fjaa^^NG<o#&«, en© 
saaicMSo 

[0 12 7] HI 0<D»>-7-yX%ffll>TH#HJ3Lfc 50 
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J; a tc N vx*-/<X7-Kfci\ ^SfiW— tfx7n^ 

jaa, -rfttJ-sy-bvFtsistafflsnso vx*- 
W7-Y*m^rcwmia;m®mit (u-t-yF) $aa 

tt, WiUf^-> 7tcg^$n/c^-e~x7n/U 

[o 1 2 8] 01 1 ic?x$-/^y-Ft&mnv- 
\*7s7°u/w?<Dmfflm (/^x7-f) tm&m 
jfito ii nc7jvr<fc5fcvx#-/*x7-Fi±, 

-^x7n/W^miStE'ff^t)tfr§±fi/U7-F 

U—ex7a/W^^|E1fil (AX7-F) tLXU 

[0 12 9] VX#— MX7-F&, 0 1 2tC7jrt<i:9 
fc, a— tfrVWX©ISAB#tc^Jx.ff 7U V FSttfcffl 
Sffitfr/^Xfc^S*iTK*Sft*« vX£-^X7 

- Kttr^X08l£H$KIi§?*£&£tt5tf, 3- 
ift £ 5 VX £-/1X 7- FOrV WXfr £<D8!*tti L 
ttTt&i^fliJSfcfcoT^So 7X^-/U7- Ftt, 
r/WXtcSWOwSS'J^T'fe^r^-rx I Di:, vx^ 

[0 13 0] VX^-^X7- F£3-'W£ftf c: i§£ 
tcti s lf^-F-fe>^-'\oe^^ffi;LTvX^- 
/<X7-K©S%f?«ia^nIflli:S:5. 01 3fC+)"#- 

n»>*'\03— ^'gusaafei^ vx^-^x7- 
[o l 3 i] 01 3<D±a*V *#-Hry*KjtWS 

a— yassasi^-^ yx0%^-r o 3— y «wat^ 

^bfc«*^tT-y-^-F-b>^Kgi^LT3-+f 
■y 4? - F -b v ^ e> 3 - \ z m £ ft i ± ft $ ft 5 o 

[0 1 3 2] 01 3 <DT@Lt>\ a-ftf7X^-/U7 

- F*snfc«*t, 3— (ft. y-^-F-try^^-e^ 
t7?n5vx^-/^x7-FSf§tf5aao^-^v^*c ; 

fe§ 0 a-+m, f'WX I D§#o3-^'WfSr-^ 
ttfefc> -7X2-AX7- HOHaffH**-^*- b 

^-F-by^tt, 3— imHR, a-fiD^I 

a— »fr/UX I Dfc«^< 7X^-/«7-FO^ 
fe§VHiVX^-+-?rffl^c-7X^-^X7- 
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giJ^fcLTODx/VrXI Dt, vx£-AX7-Fi:£ 
ftJSSitfc ?X^-/U7- F*&fflr-^-X£Wf 

£nfcvx?-^-t£m£#fcvx?-^H£»r 

tf-^^-Xi»TLTV7^-/U7- F£© 
t#* 5. vX*-*H&Mr-*^-X*£"raJ§£K: 10 

$ L fc v X * - / U 7 - F % a — »f »f / U X 2£ ttT 5 

[O l 3 3] a— tfrVKXI D{c»3<vX#-*- 
(c£SvX£-AX7-FcD£$£!ia7P-*ia l 4lc 

7°S l 0 l fCfc^T, VX^-^-Km l *ffl^Tf/< 

-rxi v^mtwrnmn-fZa ^oi5*^xr-y7 

S 1 0 2 fcfc t/->T\ MP a il-TSo ^ 5>tc, ISHMP a 20 

jcmlt vx^^- k m 2 ufcHf mmmzmn 

LTAX7-FMP£f#t\ Xx-y7°S 1 0 3tcfct> 

t, asci i a-Ktaaft-rso m^kjaaiiwi^tf 
d e s , h y 7;i-d e s mvm^itrndv XA^iiffl 

/wxtcwtTttatcs£$n/c+--esD, it#-h 

[0 1 3 4] m\ 3<DS/- J !r>Z.KfcUr)Xmi%fflf 30 

ittf-h-t^H:, VX£-/U7-F£* 
y 5 -f V S fc « * 7 5 y X a — tf $ fc « a - if r> W 

[0 13 5] fcLt©$/~ yyXtC^oT, a-lfti, +r 
F -t y *£?"Jffl LTVX#- AX 7- F ©S55ff *a 

xnmmmmmiu &3Mtzw& : r-*, m*. 

tfa-f ID, vx£-AX7-FI|t;i*@SfSWc£ 40 

Iffltco i^T tt> a y f y 7 OlEfa SaaoJl i L < M 
[0 13 6] £tc, a— <fti, tt#-F-fey#*fOTL 

ft vx # - ax 7- f vnffimm** 7 > xfi% 
nzcticftZo so 



%M 2003-85321 
38 

[0 13 7] [nyf-yygefaffia] a-ifrA^fxrt 
©WaUr^f-y7fiO><*UMcit-tfX7 p PA 

-r wewmmmmz n, ■9— e xt"p/ w 

nS©1f$8£ffl^T-9-- exT'a/U^tcoaMt.tS 

[0138] xyf-vvffiAmmicmfzismzmwt 
-y y^itoa- »f fv u xfflisaa-efe d , it- tr 

X7n/^^iMaTfeSo 
[0 13 9] a— (fx/WXti, £f\ n>fyy«l 
AS#£1t- tfxT'P/vr^tcffi^jtSo •9"-ex7 , a 
/W^nyfy y » AB#*£ft * St, a— if r> s 
-Y X f: -9— tr X W ^fSfcfc v > X ffiSSSEtf Hf? $ 

fc, if- exya/W^tt, iASSnyfyytSlS 

■rSgttlIHi1# (AC Attribute Certificate) 

U a-ifxA-rxt^m-rSc SttaEWSfcfis ay 

m&uwmftfigx&zmmiwmmuM (a a :Attri 

bute Certificate Authority) <Og£#&£*lT*5tK 

[0 14 0] HffiBfi««Wibfea— 'ff/vrxtt, 

m-i^xm&mwmttttvicuwtZo zzic, a- 

if =ft U X tt, a yf >7 ©S*«rif - tTXT'P/ W 9 
fcJtLTff&v\ ^f-trxT'D/U^i, 5fetca— ffx 
/U X fc L fcSttliEB^t (c^lft $nfc a yf y 7 
H : K cTB|^btfcayx>7«:a-ifr/WX{i:iM 
tttZo a-ifrWXffliJ-eii, BttiEW»*^Bl0a 
LfcBt^fbSnfcayf ^70l©«^fbJaa^TL/T 

m Lrc^it^yTyytDm^immickv^yf-yv 

f-y7Si©«^fb©a^-9--^x7pA-r^iJ^f : f-r 

[0 14 1] ayf >yEMfc#5:fc*fr&i!Ktt{i, « 

©i^ifflKo^TSiwrs. 01 5 thuyas* 

{bayry7jI^©5 f ctc^7LTV^^ Hf^fkay-r 

zfjxtmtDimmmcfeMLx&mtztyvJy 

[0 14 2] Sfc> it-exT'PA-f^fr^a— »fxA 
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-fxic-tt?z>3>f-yymm%wmmiw9 (a 

C : Attribute Certificate) <DMMMtLX\$. X 
-IftJfr t?X fa; U Plcftt 5 g#E£-3t^T 

tt9-7X?7^§?$£i!3^T^5x-' *ffc*fLT, -9- 

fe* 0 7V>x^T/l4<::fc^Ttt, tf-exiTn/W 
#W&B*a-*rfatf©*ttttffll (AC) ^WL 

tiE^f scfctfcs,, io 

[0 14 3] (l) WEMRXM* 
ztyy-yy (DlASfxvf -tr-JThZ x-+f r> W 

ffifS#?£ 5 sfr ©telega* fflSfEfE^-efc « 0 

Lfc-ty'ya yMZtt^mt LTW^hWl**fi LT 20 

[0 14 4] CCT-tt, iHMWHt**© 1 "OOgKM 
g^-e&SMyFv'x^t/p hp;b (tls i. 

0) fcov»THl 6©^-y>Xg|^#MbT^-r 
[0 14 5] HI 6tC*5^T, fcil*^— tfr/^X 

(^77^)^11, fc^a^-ex^n/w^ «- 

-A) {IJOMli^tTt^c $1\ (1) tf-t£X7 30 
P/W2" (9— /t) *W{k{fc«*fti£*Sfci&<0*=f 
^x— > 3 viJfl&g^fcMn-y ^xx h- t LTx-if 
r/WX (^77>-F) £iSM*5. (2) a-lfr 
/Kx (^7-f7yh) tt/»p-9*xXr-£g{If 3 

t, y-\?:x7°n/w# (9—^) »cgfif3„ 
[0 14 6] (3) -9— ex^P/W^ 09— /<0 HI 
tt, IUffl*»SUfei«#{t7;WJX^ t-y> 3 yi. 
D, 7p i/3 y^rif— A— /\tt— tbX^-— 40 

ff/wx (^7^7yh) fcgMtSo (4) -9-e 

*?©&IHH»ffll (X. 5 0 9 v 3) -5££x— 9*r 
/^X (^7^7yh) tciifl (-9- r\ • f-C 7-f 

h- C A $ -e©^UB»HW# (X . 5 0 9 v 3 ) - 

s*^t5^st±ftv\ (5) ^-exyp/u^" 

(-9-^) tt, RS A&Bfl»£;fettD iff ie&He 
l lmanftlfflfclfffifca-tfr/^X ^7^7> 50 
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h-) (CiMfl C9— ^.^--x^X^xy^) tSo C 

[0 14 7] (6) ^{C-9-ex^D/W^ (9— A) 
DHtt, (^77^F) KMLXV-t 

^77-r-F • U^xXhfcLT, a-+fx/WX 

^^ryh) ©wrsiEfiSWSu (7) tf-ex 

7*fc]5-e5 (9— /Vnp-^7) c 
[0 14 8] (8) 9--^/NP-||7^§ff LfcX— if 

?wx W7^7>h) tt, aacmwrs^-hc 
A£x<D&mmmww (x. 5 0 9 v 3) -s^-tr 

X7n;W^ fCjMfS (*777yh- • 9— r 

fT^t>«:V^^tt^MStfflE^»(D-^#tt^T*tt^ 
V\> (9) a-ffM-i'X (?777yH tt, 4 8A 
7 r-gy&*9--tfx:/p/W^ «■-/<) O^BMfpm 

^fbtT9--ex^p/^^ \cmm%. 9" 

-eX"/P/^^ , a-ff/^X (^7 

7>F) tt, £©ffi%&^c£§{fr-^!I»D/c 
^CD^y-tr-^fSSEP-F : MAC (Message Authenti 
cation Code) ^jS/BOr-^^trvX*-^--* 

[0 14 9] (1 0) a-9 1 r>^X (^7-<7> / h) 
tt, ^777>hfW«OiEL$^6S!St?./cfe, CC 
* X <D p< y -tr - ^ © ^ V 'J x X h ^ ^ 7 7 7 > h <0 W ffi 
^-c--Bi^fbLT9— IfX^P/W^ (9"-/ i ;) (CjMfM 

(^7^7>h^7^-Hl) U (11) 

(fx>y-^77--^7^) U (12)HIE 
«»74jiftlf S. -77, (1 3) 9— IfX^P/W^ 
(■9-^) «A»6a— 9*tWX (^^77^F) tc*f 

tew (fiyy-^77--x^7^) u (1 

4) BIEWIiafT^jSai-So 

[0 15 0] ±»I(C*5^T^$nfcB|^{b7;l/d 
9XAKS!oTrL— 9*t ? /WX (77^7yh) t9— 
exXP^7^~ (-9--/^) M<t>T-21£j&tfm7-£ti& 

[0 15 1] r-^35ta<0^fiEtt, ±a<0^fiE®aT'X 
-ff/^X (^777>-F) i:9"-t: 1 xyp/W^ 

(-9-^) ra<3D^lE©fci:K4fiR«nfcvx^-s/-^ 
Uy h^S©Ul$n5^-yb-^SEP-K : MAC 

(Message Authentication Code) ^IVr-fT'f© 

[0 1 5 2] El 1 7tC^-yt-v ! ^!iEP-F : MAC 
(Message Authentication Code) (D J £f$M$j£7rs'$ 0 
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M«v5/affi*fWU S6EMAC5/— k ><7* 

p< >yfe- ^113- H (MAC) fc^jSfS. 

LfcM A C *a6®-r-*t#40UT, SfUHfl-PSffir- 

>!C*^T4J«bfcMAC tSfSMA C t<D-W$n 

[0153] (2)3 >r >y ?iJffl«IIS1!S«SEWS (S 
ttSEWS) 5MiH 10 

a-+f rV WXA^3>t>7 ft £ ttfcU— £ 

tlftn yfy^i: K c*Bg*|{fcLT*&WU 3>f> 
y cDfiJffl»Ht £g£telft L£p > f V y f UfflfllKlf *HSE 

uwk wmm&umm (ao *£j*i/c, a— tftc 

[0 15 4] 3>f->y5pJffl*HflH8iElfl»» 
6M» (AC) ?Mt5±f*«, u--ex^D/w 

xyf-ff-fT'$oTfe^o ^xyr-cr-i'^Mtt 20 
SEES (AC) If-lfxya/VT^ 
Og*{c^oT^cD^xyr^r^^SttEE« (A 
C) ££jj!c<r3 0 

[0 15 5] HttMttcaWtSHl^fbnyry^coa 

mcmmmft^yryvm ■ k cAWft^nrtett 

(a) a— tf-r/ wxo-b^ a Uf- -rf-y^^-tr 
x7a^^aiig«M&W£ftfc s p#jsx b u-s> 

ffiffi«fcttJ&f Stf-ex^n/^^ (S P) ttfSXb 30 
: SC. Stopub. SP. K 

(b) tf-ex7D/vf*©fiiW*3«H&« (£i§& 
&) : S P. S t o. K 

(c) -/XfAMJ" (SH) J:a-1ff/WXT*M 
*S»fcLT£#Sft*?n-/W#iiai: Kg 

7WX*»&*ttlW» (AC) £§{f LT-9— exy 

[oi5 6] vvrn©w*fti«*araLfci§£ 

T-fe, +r-l£X'7 B p/Vf2>5>a-- «f7WX»c*f-rS 
n^ri/yEffi&SWiJBftSEW* (AC : Attribute 
Certificate) <D&MBWk£ LTti, a— 
IfX^n/W^cWtSil^Ka^V^fTStlS^JS 

agterMcfc^Tti, "9— t'X^P/W^^toaS 50 
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a-^ltcD«tt!£E# (AC) *^UTE«"r«C 
kfc&£o «T> ±fB (a) ~ (c) ®flg«fc*Jtt38i 

[0157] ( a ) s p flj&x b u- i?m®mic n&t 

5-9— ex^P/W^ (S P) mxhb-mil: 

SC. Stopub. SP. K^jgffl bfdf£ 

M3S U fca— tffv w X cd -fe * a U ^ f - -y 7"<D ;>< * U 

*l> fc^SSttfc&tf-ex:/n/ V^Sfigtffc S P 
ttJSX b Is-mmm :SC. Stopri. SP. K 

jiSfsjutiEwso**^ s Ptttsx b v-i/wmmz. 

HtJ&t&V—\Zx7v/W# (S P) ttiSXhU-^& 
ffll:SC. Stopub. SP. KT-Bl^ffc^nfca 
yfV7i:Kc, t&M, [SC. Stopub. 
SP. K (K c) ] £IRDttiLT, S PftfSX b U—>* 
ffiffiH : SC. Stopri. SP. K WtfWflfl* 
^fft 3>fy7|: KcaitS, 

ftfc, [A (B) ] «, ATBt^bSnfcBfr&ftSr 
-*%^f fcOktSo *^t?{4> a— ffr/VX 

P/ W 5 C t ft < a— yf/ W X flco&fflk 

[o 1 5 8] ±c«n?tt, 4»i«6«**feaffl 

ayTyym<D^m\nc s p^tfSx b u-^&ffi 
H:SC. Stopub. SP. K*ffll\ avfyy 

m<ommc s pwisx b u-ammm -sc. stop 
r i. sp. K*m^rcmi$.Miz^xmwLrct)\ n 
mmfi&&Mmz>z.t%>mzxh i ), ym&ft&k& 
mtzm&ii, =iyy-yym<D^mt, mmtoMftv 
m:s p^isxbu-^a (pmm) • sc. s t 

o. SP. K^fflV^c SPM(SXFV-y' 
« : SC. Sto. SP. Kli N t+a'Jf 

[0 15 9] (b) +J— ex7P/W^<9flWtf3$2S 
« (ttii«3g) : S P. Sto. K*afflLfc«£ 
■9— ex^P/W^tt, a— y-r/WXfcWLTSI^-r 

IBf&tl: S P. Sto. K%)lfflLTHg^fbt^o a- 

femnrc^mt^y^yvm: [sp. sto. k 
(kc) ] %omts£tit-e%to\ ■9--exyp/ < $ 
-r^©{8wrsawBa: sp. sto. Ktta— »fr/< 

[0160] u-dx, ayT-yyzmm mmt) t% 
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f/WXIi, ^-ex7nvU^£JittStf8*£j£ttb 

SP. Sto. Ktc^oTnyf >'y|| : K c<D«^f{b 

*§{b£ ftfc n yfyy St: kc*»»u Wayf-yv 
M: K cT^mtnyT-yycDmmt'ftfto* MMX 
±$<D (a) OJ&BfcSfcD, a-tfr/WXtt, 

[0 16 1] (c) J/XfA*;^ (SH) ta-ff 
*s)\,#<n&Ws.<-3y7-yvi$&M, fijfflsnscts 

KlhU ->Xfi*;^ (SH) tJ^WS^nftny 
^c*t b x 3 y f y y *mw& § n yf- y y f V x- 

bTS/XrAdvl/^ (SH) ka- fx/UXT'&Wf 
SH^LT^^nS^n-zVl/ftilSI: KgcD&SI£ 

ttSEW«K*IAU, avfy^Ifi ttoxy Fx 

-vx-jti/uf&fo^yT-yvmitmtiitzt* 
teihu a— «f7 f /vrxK43^ro»3Vf-yy«: k 30 

[0 1 6 2] WT* iin?)CDM»-3V>Tl¥fflW^ 
•TSo £f\ ±E (a) ~ (c) K«jl-rSS14SEW* 

(omiwm'y—^y^ic-o^xm 1 s^vTiJiwr 

[o 1 6 3] ki stDSagv—^yxt^ SfeKiHHHLfc 
01 5£Day^y^l8A»>-^>X©-g[5i:L,T^ 
j*S ft*iltt»f»0£JS, £fi»£f¥*ffl».S bfc 

1U •b^aUr-i'f-'y'/rt©^ ; eUfc[i-9--exyp 40 
7^^iItS«^^nTfcD^ +r-trx7°n/U^ 

[0164101 8<DmWfc-3^XMW?Zo a— tfr 

(1) ir+aUf^fy^jtoa-ff^-fXl^ * 
-£x7n/W*fc»bTllttlBfl» (AC) 

y m?o mwm (ao s*c«, u--exyo/^ 
^a^Lfe5pjffl*ffr-^ta— yoffiffia cy— ex 50 
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ISifHS* (PKC) *»f*bT2Sflrr*. fUffl&ftr 
fl»Jittf=iyx>y5pJffl«iJI8llia, WfflJHR*© 

tea— iffiSx-^ br&*ttS. 

[oi6 5] s*»±» x-^saotiSE^BiiEfc-rsfc 

[0 16 6] ^gflSlH|^S*ffl^/c:«?*«C)4fi!c^ 

mic-D^x, 01 9*fflv^TUiwr5o 01 

Si«, EC-DSA ( (Elliptic Curve Digital Signa 
tureAlgorithm) , IEEE P1363/D3) fcfflVfcfc^S^r 

fkbtffiRifiBa^ (Elliptic Curve Cryptosystem 

axT> e c c mx) ) ^fflv^fefj^^-r^o ft 

ABg^l ( (RivesU Shamir, Adleman) ftH (ANSI X9.3 

1) ) ^ffll/^u^tnJtMSo 
[0 1 6 7] 01 9©#Xr>y7 P ^OU^T^f §c X 

f-y/S 1K*^T, p*ffl», a, b*ffiP3[&«l®ffi» 
OWRftlft: y 2 = x 3 + a x + b, 4a' + 27b ! *0 
(mod p) ) , G^Rfti±0^-X^yh, r 

*G<D\m, KsZWmm (0<Ks<r) £?% a X 

b, f=Hash(M)i:-r§c 

[0 16 8] CCf, M-y^aMS^fflV^T/N'yv-afa 

b<, n-y^aM^cA^^nfcr-^Wie-y hA^ 

li, MD4, MD5, SHA-lft£tffflV£>*l£l§& 
tS^b, DES-CBC*^f.n5i^S5. u 

<o#a-ti, m^miimt^^uAc &xvtm: ic 

[0 16 9] ffittT, Xf-y/'S 3T% SL^u (0<u 
<r) *4fiKU Xf7yS4^-X^yb%u(g 
bfcffitlV (Xv, Yv) ^ftirr^o ftfc\ ffiRfiili 
±©*P», 2 dKSH«tlT^*o 

[0 17 0] 

[ftl]P=CXa, Ya),Q=(Xb, Yb),R=(Xc,Y 

c)=P+Qi:-r^t> 

p*Q£DS# (JraJS) , 

Xc = A z -X a-X b 

Y c = A x(X a-X c)-Y a 
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A=(Yb-Ya)/(Xb-Xa) 

P=QOB# (ZitSW) s 

Xc = A z -2Xa 

Y c = A x(X a-X c)-Y a 

A=(3(Xa) 2 + a)/(2Ya) 

[0171] cne^ffli/T^GOu^tf-^-rs GI 

ic'noo G, 2XG, 4XG- '%ff»U u^2ita® 
IHJLTlJb^T^SfcilStttJS*^' XG (G£ i 
@2{gSLfcffi ( i tiu^L S Bfr&JKX.feHf4>e9 h 10 

tiff) ) fcira** *„ 

[0 1 7 2] Xf7^S 5T\ c=Xvmod r %!+ 

U O-e&tffUfXf 'yfS 7T?d = [(f + cKs) 
/u] mod r£fH?U Xf y 7S 8 V d #0 X'$> 
ZfrZofrWfeL, dtfOTfcttnfcf, Xr>y7°S9-r- 
c:6J;tfd**F»B7*-*i:LTHtfrr*o iRK* r 
£1 6 oe-y hgOgSTfcSfcfcS&tS^ 
f-#t±3 2 OfcT-y hg£:&3 0 

[0 1 7 3] Xf-yfS 6 fC^T, ctfO-e&ofdi 20 
Xf >y/S 8T-d^0T-Sofcl^fe, Xf-y!/ 

s 3fcRoTSL»*£j8urr, 

[0 17 4] *fc, »H««H§35rjS*fflV'»fc«^»*0 

&mm. H2o«ffl^Tiwr*. xf -y^s 1 1 

T\ M**vfe— * p£ffl», a, b^||Rttl©« 
Off Rfflii :y z = x' + ax + b, 4a' + 27b ! *0 
(mod p) ) , G?:tlRftl±^-X^yK r 
*G<DffiR, G&.fctfK s XG*&BMI (0<K s < 
r) fc-T^o Xfy/'S 1 2 r-# cUO' 30 

d*^0<c<r, 0<d< r*ffitctfrmit%o Ztl 
*mcLT^rc®&. Xf 'V7*S 1 3T% yW-te-^M 
aVvy^affi^f-WU f=Hash (M) ttZo * 
E, Xfy^S 1 4fh=l/d mod rfcff-gU Xf -y7° 
S 1 5 T h 1 = f h mod r,h2 = chmod 
r£tmf So 

[0 17 5] Xf >y7°S 1 6ft*VT, KfCftKLfch 
l*5<fctfh iaP = (Xp, Yp) =hlxG 

+ h 2 • k s x cmmt %o %=?m%mm&. ^~ 

XXJy hGfcitfK s xG&ftJoT^SCe* SI 1 9 40 
cDXf >yf S 4 fcR«fcffiP3ft«±0^0^*7—(SO 
ft»tf"et*. flt> Xf >y7°S 1 7^P^WSjI 

^if-5«£u mmm&wmiixT >y^s 1 8 

(ClO (HBKcti, Wlji^wfiJStiXf >yf S 1 6T- 
X>%TL£?o OSO, P= (X, Y) , Q= (X, - 

y) (otamttfrst* \mn?2?s p+q«s 

]&V&SCt1WmLT^%) o Xf«y 7*S 1 8TXp. 
mod r^ftHU *fg£f-* c fcjfctfcf 5. ft 
*C, CO«A^SLT^ft^ Xf-y^S 1 9fcl 
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[0176] mTmztffc L^t mmznrcm^ f- 

[0 17 7] Xf7 7°S 1 2fc*5I^T, tf?g£"f-£ 
cSfclidAV 0<c<r, 0<d< r£)Sfc£&fro 
fc«£> Xf -y^S 2 0lclty o $fc, Xf-yfS 1 7 
fcfcV^T, ^P^WS)I^-c--SofcJi^tXf >yfS 2 
0iclt? o Xf -y7°S 1 8tfcV>T, Xp 

mod r OfflfcV *?#&f-* c i:-&LT^&fr 
oftf^letXf'y^S 2 Ofciitr,, 

[0 1 7 8] Xf -yfS 2 Ofcfc^T, *P3£#iEL 

[0179] m&umm (ao g*%§fi l/cd--^ 

i DT#£SW3yfyyi^(5tS3yf>7l: 
Kc^mtt^o c<D3>f>y«: Kc<DB|#fbk: 
affl-rsiltt, tu$© (a) a-lff/WXCD-b^a'J 

f -c f -y f(Dm-^yu; ufpgimmmMzn 

fc S P^tJSX h ls-i?fflm : SC. Stopri. S 
P. K, (b) ?-\£X7u/U#(D&m?Z®m»: 
SP. Sto. K, (c) ->XfAW(SH) fca 
-If' f V W X T°m? % m t L T£j£2 n § -/ W 

[oi8o] ^ -y--exf p/w^ti, nvf> 

ttt, ^-ifxfa/W^Mil^ffl^/c*^^^ 

-i:|s]1tcD^iltc^oT^T?n^ 0 -9— IfX^o/W 
^tc ± o Tft*«nfc*ttlEifl»tta— «f f X K 31 

f«f«n, a— fffv^xicfc'^T, ±j£©ig2o©saa 
7 a- ^ p««^-f y x tc^o Tg^Eiaa^fT 

[0 l 8 l] S&fc, ^StcjSUTa-^ff/WXfi, 
JSttSEW* (AC) rtOAC«fiF#O^ISItilEW»ffif« 

(AC) ©Hff#©ffffia^5i^T-fe5if^lcti, Ji 
ttliEB^* (AC) 08?r#©&IJfl»SEl¥l«©iaiiE£fT& 
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[0182] mmmm cao t&mmmm (pk 

li, mmm* (ac) (D®mmft?zmc'mt>n 
zmmmm (ao KnatsftMiKiiift cpk 

[oi8 3] mnttswmmwm (AO^tyb • 

(S 2 1) 2n3i:, ■ttlElfl»©ACff}$SO^BBa 
fPM'lifg (holder) 7-r-/I/K*tttii (S 2 
2) U ttWb/c^§fl^M#[ffg (h o 1 d e r) 7 10 
4 ->l FrtK«ttSnfc&H«EW#0«ff #1f « ( P 
K C issuer), ^WM^'J 7;l>## (P 
K C serial) £%g (S 2 3) U 
»056tT#1S?B (PKCissuer), &MltIP£# 
(PKC serial) fcK^VT^MS 

msmm (pro ^tam cs 2 4) lt, jsttiiw« 

(AC) fcMatttt&nfc&M»SEl!B» (PKC) %ssl 

m (s 2 5) tz* 

[0 1 8 4] 02 1 fc*1-£?fC, JlttSE^» (AC) 

t'mmmm (pro stttpwctei^n 20 

fe£Hft&l)!ftflffll (holder) 7^-^FrtO^ 
WIISEW»%fT#1»ii (PKC issuer), *5£ 
tf^M«8EWS^'J 7;bS^ (PKC serial) 

[0 1 8 5] 02 2*#!!SUT^MIiSEW* (P 

KC) ^HlffiatCO^T^fSo El 2 2 K**£l?fl 
8tHW» (PKC) (DmtBi. Tfi^S.±{u^IiE0^*l 

titt, «±ffi Ob-hcA) ^(D&fmwmnm 

€«di*ffft5«B»IE»17n--p**o SI*, fcSE 30 
#ftfc&S£»MGEEi9§ft (PKC) *-fe*yh (S3 l) 
U &HftEBft (PKC) tefflffilRKg^T, £M 
IMPW (PKC) (S3 2) tSo 5?) 

K , fcSEtt ft * 3 SEW»a«©«±fflO^M»iEW# 
T'fcSfrfcWS (S3 3) u «±tt-eav^^tt, * 

t# (s 3 4) -r«o «±ffi^i»aaE^**^fisn-fe«y 

h (S 3 5) £nsi:, S&RSfc&g&ttiEfli 

it) w# (S3 6) u «iiEW»oa*^sa»*-e 

fc£fr£fr£*iJ£L (S3 7) , gaS«T*&V^ 40 
tt, TfuPKC^-tr-y h (S3 9) LT> ±tt<D^M» 

SEfc^fr (S 4 0) T3<, Xr-yfS 3 7tcfeW 

tt^WEftj: l/fcWE*£ff (S3 8) L, Xr<y7s 

4 1 tClt? 0 

[0 18 6] S£&aEtC$I;!jL/cJ§£ (S 4 1 : Y e 
s) @Wi:-r5 PKCOtftSE^TUrc^S*^ 
£ (S42) U ^TLTV^Jf^i, PKCt&SE*** 
7f*. xE7LT^&WI&«:, 7r-y7S3 6tcM 50 
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t), »*fcSEK&gfcfcSEti (&i»») Tfso 

*t&SEK£«L;fci§£ (S 4 1 : No) W\ Xf -y7S 
4 3tcl^, 17-11, W*{f*«iiM)¥lK#*fM: 

[0 18 7] 0 2 3*#jatTJittSEW« (A 

o cd&ib&s mi) ic^rmmtZo s-r, &se 

ttftt&SBtttPW (AC) (S5 1) U 

mmmm cao te»rt^cs-3VT, jusse^* 

(AC) 0ffiW#*5«fctf (S 5 2) f5o 

s&e, HttiiEH« (ao «m^#(o^fflasEw*% 

Ifia&S^«yjR5>hUft£a»&]«& (S53) LT, 

^BaarfiEwacttSEjaa^sifi 1 (s 5 4) **„ 
[0188] 2»imE«*oWEic^b^a^ (s 5 

5tNo) f±, Xry7S 5 6Kii#, X7-Jaa%fr 
tkmzmhLTc^ (S55T'Yes) fi, Stt!OT» 

(AC) o««#ic#^«&l)MGIEiMI«iStt««v> 

»u#^hUfti!*»6iRa (S5 7) tr, ^r»saiE^ 

liEiC^bfc^ (S59tNo) XT77S6 0 

ihTSo &M»iE$»0fcf8cji!WjLfcit£ (S5 9T 
Yes) BftfEEH* (AC) Oi««ES(6t5S 

MaiiH^»^^wa^owb (S6 1) r, uxoffi 

Ufe^B8»«fflV^TJB14iEW# (AC) (Om^kWUM 
%mr (S 6 2) -r§ 0 ?«Wc^t/cJi^ (S 6 
3T'No) «, Xf-y7S 6 4 tc)t&, X7-«ia*ff 

;5:5o ^jx-if^comcDsaa^cpii-^o mztftmctft® 

LtcigG (S63T*Yes) tt, SttliEaM^IiE^T 

[0 18 9] ^(C, 0 2 4%#F,SLT«ttra» (A 
C) CD^IBffla (002) KOV>TlttW1'5. i 

T/wxw«tt»ii (ac) ©ttSEjaafc^sfcft 

(AC) ^-b>y h (S 7 1) t, RttM* (AC) % 
IMffBicS^VT, IttliEB^* (AC) ^mW^feitf 
(S 7 2) t*. ^?>f-> SttlPM (A 
C) omW#O^M»IEW» (PKC) tfSf'WXrt 
^^^'JtCt&lfiffi^^nTV^V^^^ (S 7 3) f 
5o ffi#^nrv>5^ (S7 4tYes) SttSE 

(ao ©mw*o4ai«Bwr«*otHL cs7 

5) T, Xr-y 7S 8 l &cjit?o 

[0190] mnuwm (ao omw#o^M»SEw 
m (pkc) ^if/wxrto^t'jtfi^sht^s 

1/^^ (S7 4T'No) «, MttSEUm (AC) tDPiTW 

€o^raasEW« (pkc) %es5«s^ttu h u 
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ftEfrMM* (S 7 6) LT> BttlPW (AC) CM 
t#O^BI!l«SEW» (PKC) OflHB&JIfc^fT (S 7 

7) f § 0 &mmmww<Dmmc$:%iLrciM'£! cs 7 8 

KtC^lAbfcJi^ (S 7 8T'Ye s) &r£ttgiE9!S 
<Dtkfflfe%ZUft (S 8 0) Lfc^ HttliEHM (A 

o nm%%K.tii&tsQgwtt9m (pkc) 

8 1) fSo ^#^tlTV>5^a- (S82tYe s) 10 

a, uttfpw (ac) nm&%v>'&fflmmm*:wo 

ihb (S 8 3) T, Xf'^S 8 8tClt?o 

[0191] mvkm®9 (ac) oa*#©^M»sEw 
* (pkc) ^af^wxrto^t'jics^snm 

Wf£ (S 8 2 7- No) 14, H14SEW» (AC) <D*S 
#O^B8»|EW* (PKC) 5 W4 «J # 5> h U 

(S 8 4) LT\ JSttlEE* (AC) cDg 
«#Oftm*Sll§ff (PKC) cQ&fBfiiM^T (S8 

5) -r^o '£Mmmm<otmicm.Lit&& (sse 

t'No) H\ Xf>^S 8 7tc)i*, X7-fiia%fT& 20 

U^fmLfzWi-S (S 8 6TY e s) tt, £MI£H#» 
*»6RttSBB« (AC) ©iSratlfflt^i (&M 
W) ^SXDtBL (S88), HttgEHB* (AC) (0%% 

®mwm*mfi (s 8 9) ts. *&&iBc^Lfci§ 

£ (S 9 OtNo) 14, Xr-y^S 9 1 ICMfr, X7- 
HiEtfi!tlAb/cl# (S90tYes) JUStEESt* 

it^yf-yvmvmmmicmrtZo 30 

[0 19 2] ^-VT'WXic&zm&UWtttmtf 

[0193] ( a ) S P #j£X h ^«itMt 

(S P) ftfSX hU-$>&lffltt : 40 
SC. Stopub. SP. K*»fflLfc#& 

*1\ nmv (a) spwts^hu-^aMBiiKWjs-r 
5-9— trx^a/w^ (sp) ftj&x h u-s^iwa : 

SC. Stopub. SP. K^ny-fy^St: KcO 
Bf^ftfCiifflU [SC. Stopub. SP. K (K 

c) ] *mLrcmmm*ic&"3<*VTyy$mm 

[0 1 9 4] SP»*XM/-^IMMI: SC. Sto 

pri. sp. Kii, v-vxyv/^ttwmmc® 

tt?n, a-tf 141938 LfeBSIWB (^7-F) 50 
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yf-yyvmmfiasmtKZo 

[0 19 5] 0 2 5tSttfIBH*^?»£DB|^fbn>r> 

[0 19 6] H2 503/— • fyxmiZftiTffiWtZo 

^LTV^Sc *1\ x— tff/^XKWLTa- fcQA 

yjT-— >3>I Dfcflf&tSJIttiEIIMI (AC) £W 
tf-fSo a-lf-r/ WXTH4, T^'J^-i/a > I DfC 

n : Kcom cm) wmm.t%o 
[0197] tta.v7-4i-v"fMmmt. mnumm 

SttMtrt^^^n/cHg^ftnyf-y^M : [s 

C. Stopub. SP. K (Kc) ] £$t)WLT, 

^■-exya/u^wa^c^jn/cs pftj^xh 

U-S^MB8:SC. Stoprl. S P. KSrilfflL 

[0 l 9 8] yaz^-ifTtUTMM&lt, BtfiLfcn 
So Bg^t3^rvy^-b*ayr-i'^"y^rt©^*y 

tt^n-cv^«^«, ftffittvfr^mteyTyv 

^Wi^fTb, ti^fbMS^i: Lxmh^^y 
T-yy^a.-^U^mmctHtit^o 

[o 1 9 9] ixsmwvtt. ommQua* 

SfflL, nyxvyaoBg^ftt S P^tfSX h 
PJg|:SC. Stopub. SP. K*fflv\ Bf^tn 
^fy^iOt^t S P^tlSX h W-yfiBI : S C. 
S t o p r i . S P. Kfcffi^fctflJSfcLfcff, ttii® 

!CSPmXhW->l (£31St) : S C. Sto. S 
P. K^fflV^§ 0 SP»M^vl(« 
1^) : SC. Sto. SP. K(4, Wa'Jf^f v 

^^^yowis-rs-y-ifx^'p-'W^-y-^x^ 
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[0 2 0 0] (b) V-\£7>7u/U1t<Dffiit&m3i 
m («5I»&) : S P. S t o. K«Wltfc«^ 

bujS^ (b) It-lfX^D/^^C^tsaSfB 
H:SP. Sto. K^^yfyyi : K cOBgTOc 
jjgfflU [SP. Sto. K (K c) ] ^tSfflbfcStt 

[0 2 0 1] V-e7>7UJU?<DUfitZ>mM ■■ S 

P. Sto. k«, tf-ex:7n/t-f*W»»iU p- 

-^f/U^nyfV^i : K c J£WL%~$ %>tc#>K 
it s -9— ex^n/W^KfifttUT, nyfyyioS 

[0202] 02 6Km&MW9frt><D=iyy-yyWm 

aw, ^yr-yym^^^ayf-yymmmm<D 
is-sryxzmmtzmz*?, 

[0 2 0 3] 02 &<D*y->ry7>mfo®.ixm$1rZ>o 
02 6aft^e.-b+a'Jr-rf-<y7 p rtSP©^ ; &y, 20 

[0 2 0 4] ff\ rL-+fr/WXKMLT3.-1fOA 
tShTc^yy-y yWBMMk t. LX<DT~7V / r—i'3y I 

Dma'jf-f^ Twwwca&fli u * * y * e 7 

yjy-^ayi D(c«j£-rsJSttfiE^« (AC) 

|: Kc oBtiS 30 

[0205] ■fe*ayf--f^y^wj*P»tt» rnmimm 

'CitlcttLXz.-ifT'UXlkfrLXimU Wa'J 

LSI. OfflSSfctt, ^offio^S, W^ffllt* 

>&micfoVX)l>-hMUm (CA) 
tfiliBWfcfcfiESttS. cofKiB&Sfcfc^T, 40 
Vf^ffyft, y-ZXfvtWMHzvl'aym 
(K s e s) ^rtt^t?.. 

[0 2 0 6] ffia^SE^i-rSi:, Wa'Jf^7 

Wf5ffifB»: S P. Sto. KTBg^ft^nfcpyf- 
yylof-?, tfcfc^ [SP. Sto. K (K 
c) ] tftettSftt^*. 

[ 0 2 0 7 ] -fe* a U r -f ^ -y 7fr 5>JSttlP)W£§{H 

Lfc*-trx-/P/w^i, mmm*<om%m,9m so 
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"T3IMMI : S P. Sto. Kfc/Bi^T, JBttSEUBfcte 

femtircnmit^yryvm: [sp. sto. k 
(kc) ] vm^immzmfiu xyf-yvm-. k c 

^cD+BS^fMiiJc^oV^T^Lfc-tr-y^a y*- (K 
s e s) THf^fbLT, l-^V^t+a'Jf^ 

i-vzficttLxmm?Zo 

[0 2 0 8] •b+aUT-Cf-V^SJWWi, -9— ti'X 
y d/U P>-b >y i/ a y*-X*t%mtZtirc ayf-y 
?ttt>*>, [K s e s (K c) ] %&&t%£, 

Jlfc^fTLTPy-ryyfc: KcWft5„ 
[0 2 0 9] pyf- yyft: Kc<9$f#tcfi!c#rf5i^ 

a-+frV W xfljflapa, mnLTc p yf y y Bfcjgja 

l x m tr hi m t p yf y y *-t * a u f -r f 7 7 

Wtt a U f f -y ^rtcD^ * U < , ngpp< * 'J 

m$ ^ty^ m#{k nyfyywrs, * 6 tt , 

l , -b * a u f f f - y ^rt T'Hg^f b 3 yf y >y tc « t t 
nyf^yl: K c*afflUfe*^kfflH%Slff U « 

[0 2 10] (c) i/*7-L.*s)W (SH) t=L— Vt 
;UZX&G?5mtLX£l$.Zn57u-rt)l#m 

^tC, i/T&hfrfr? (SH) fca-ff/WXT'«t 
t«»i:L/T4fi!i«nS^a-/ , 5;I/«jiji: Kg?:, n 
yr yyi : K c ong^fbKHSiWKaffl LTJittSEW 

frxyr-yvm-- Kc^m^mtct^mtL, ?y 
r y yosaff ^HR-r 5 -9-- ^ x ^» 3 yf y 

l, yxfi.*/W (sh) eiseasnfcnyf-y 

[0 2 11] MftWtcti, -9— l£X7P/W:?"fc#LT 
nyfyy^iltsnyfyy^'jx-^owtsn 

yfyylltm p yf-^yBefttr4 5 -9— ex? 
pz vf ?<nt%? § 3 yf y v SBffi#H, * ur ~y xf a 

(SH) fci-ff'UXt'ttttSlli LT£ 
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Ifrf So 

[0 2 1 2] H2 7fc, yn-^;l/ttUi: Kg*3V 

[0213102 7 fete, nvf^ySiO^-y 

ygBflfc^rf S"9— ex^o/W^ (C D : ayy-y 10 
7f^XhUEa-?) 3 0 2, nyf>75:MSf; 
&WaU '9--H'X7 P D^-('^3 0 2JCWLTH|^k3 
^f^^^IfttSnyf^^'Jx-^ 3 0 3, +J— 

trx^D/u^"3 o 2^e>3>'xy > y^si-r§xy f 

X^f-f r-T t LT<DX— tf'fVUX 3 0 4 fcjSLTl^ 
So a-ff/WX3 0 4tt, ituxE© (a) , 

(b) CQ0IJt|im Wa'Jf^7^tU -fe^a 

U r -c ?• 7 f A CD p< * y fUsEfc fcTX 7n / w ^ 
[0 2 14] H2 7 0«iaKOl#>TattWr*o ^ 20 

y*mmt?zrctb<Dm •■ k c£0ua.fra»f<: =cd^ 

U ^bfc3yxy^« (ttilSIO : Kc» 
T, (1) 3>r:> / <y£Bf^{tLT^-£X7 0 D/U^ 
3 0 2 teftflWS. 

[0 2 15] i/XfUM3 0 1tl, (2) 

3yfy7^'Ji-^3 0 3frf), n>f>7^Jx- 

^3 o 3offi#-r5nyr^y^yx-^si 

I) :Kc c*£MU (3) ■fr-EX^n/V*' (C 
D : nyf-yyxVXh'J tfa— #) 3 0 2fr£-9--tf 30 
X7a/W^3 0 2 0ffiWT5-9--ti < X7 p n/V^|| . 

[0216] s/xf-A*/i^3 o i a, nyf^y^'J 
x-*« : K c c^-exyn/W^M : K c dTBt 

Si: Kg-em^tTSo t^h^mmT-^ ■ [k 

g ( [K c d (K c c) ] ) ] *£j£U (4) 
3>fy7^Jl-^3 0 3lcmttt%o [Kg 

c [k c d (Kcc) ] ) ] immic&mLitft&v 40 

TtJ;^ 0 ?o-/W£iISt: Kgfi, i/XrA*;l^ 
3 0 1 a-f f/UX3 0 4*W5«T'355o 
a— tffvWX3 0 4fcli, (5) rVUX»#, r 
/WXlg^B#$T\ feSWi^^ tfcnyfywH 
AM^tuSTlc, 1 W±£D^n-^;l/«jlSi : K g 1 ~ 

k g n^teifisn, cns^v-xf-A^^^gsoT 

So 

[0 2 17] 3yfy7^'Jx-?3 0 3ti, 3Vf> 
y»: K c ^3>f U x— £|| : KcctfHg^ft 50 
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LfcT~2 : [Kc c (Kc) ] *£j«U (6) d tl 

(fX^D/V^ 0 2fc#LT)£{B-rS£i:k 
fc, ->xfA4;;V^3 o l frSSISLfc, 3>fyy^ 
'Ji-^l: Kc c^-ti'xyn/W^il: Kcdf 
H&^ffcU $6(c, c®Bg*f{bx-*£^ci-/Vl4Jai 
M: KgT-Bg^bL/cBg^fbStx-^ : [Kg ( [K c 
d (K c c) ] ) ] %y--¥7.?U/U?3 0 2&C#U 
T»T5o [Kg ( [Kcd (Kc c) ] ) ] 

[0 2 18] a-f f/WX 3 0 4 W-lfX7'n;W 
#'3 0 2i£*fLT (7) nyryyafAS*^^ 
i:, (8) •9--tfX7 p n/W^i, S*nyf>'yfcS 
fSf^JSttSEWS^^LT, x-+f'rWX3 0 4fc 

asm**. <ffit%m&mw (ao wa©m 

fif-^ : [Kg ([Kcd (Kcc)])], t4 
3 yf>7^ 'J x— : K c c t:X7°P 

**ya-mj6B«: K gW^fcbfcr-*, fc£ 
tf, nyf>"y|: K c^nyf-y-y^Ux-^Si : K 
c c-ffBg^fbbfer-^ : [Kcc (K c) ] mm 

$n, ^-ex^n;W^3 0 2©«?S€^ft?nT 
a-+frV^X 3 0 4 ESUSSftSo a-ff/^X3 
0 4tt, SflbfcSttfiEB^ (AC) &**U»C*lfrf 

So 

[0 2 19] 3>f->yO!)5pJffl^FC«, X— •fr'WX 
3 0 4(i, •y--lfxyn/W^3 0 2il<DF^ (9) fg 
5W&ff&ofd£, (10) $fcfc£ffifc#<*)JBttSE$ 

* (ac) *-v—vx7u/u#3 o 2icmm?%o fB 

EISHMaii, x— ifr/WXC-fe+a Onf-V/h 

ex? a/ w ^©ffls^sBnia t l t nff « n 

So u(DfflSEIIWi, ftfcKWLfeHl 60TLS 
1. 0$aa$fc«, ^cDftilO^S, «>JAtf^SB«^SfC 

tcj55ur;i/-h^SES (ca) s-eo^wasE^tf^ji 

4?v7t, V-\*7.'7u/W#\ttv i say&. (Ks 
e s) So 

[0220] UttSE^Sttt, tuM^nyry-y^'Jx 
Kc c%-9--ex^n/W^«: Kcd 7?H|^ 

KgWtfbLfcr-* : [Kg ( [Kcd (Kc 
c) ] ) ] , feitf, nyfyft: Kc^nwy 
7'Jx-^Si: Kc cTBf^fbbrcr-^ : [Kcc 

(Kc) ] mw^nr^So 

[0221] •t*a.vf-j : f-y7frt>m&uwwz%ta 
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ttjWS&SttSi:, (ID ?-\>z7u/W?i& g 
B^RfrWr 5*-ex^a/W^ : Kcd^ ffiHg 
Mc^fi)cLfc-b-y^3>« : K s e s -eWfbLl\ 
BgJfffcB'f-* [K s e s (K c d ) ] ££/SU 

[0 2 2 2] a-ff/^X3 0 4©-b+a'Jf^f7 
7fM»i5M\ (1 2) +J--trx^P/W^3 0 2*^6S 
iWLfc^mmT-Z [K s e s (K c d) ] 10 

7ti/U?m ■ K c d£*M^-£X7 P n/W£ , y: ; £ 

[0 2 2 3] a— »ffWX3 0 4<D-t^3.VT-<f-y 
■/mwmis (13) IMM^n^T^y 

*Ux-*« : K c c5r-9— ex^D/W^il : K c d 

3I&: KgWfftLfcr-* : [Kg ( [Kcd (K 

c c) ] ) ] ic-D^r, *i\ sa^pjfw-r^^n-/^ 20 

: K g-eta^U [Kcd (K c c) ] 
•f-So (14) U--e7^nn^3 0 2fr5 

T'P/U^lt : K c d^iIfflLfdtWtaSfcJ:^ 3 
yfy7^'Jx-?l: Kc c£$l#-f£o 
[0 2 2 4] £P>tC, (15) a— !f-r/UX3 0 4CD 

: Kc?:3yf>7i"Jx-^l : K c cxn%mt 
Lfcx-? : [K c c (K c) ] ZmitiLT. SijfS® 
gtCfcoTBtff Lfc3>-ry^^Ux-^» : Kc c% 30 

[0 2 2 5] a>ry^^: K c 
a-Hf rV ^X304<D-tr*aUr^-y 7SjiJ«i> 

a— wxsijwaptn yT yv<r>'mmm%i u 

[0 2 2 6] a— *ffvVfX3 0 4&, ^-fX^OA 

-r^'3 o 2^p>w#L.fcHg5#ftpyf-y > y ( d 6) © 

[0 2 2 7] &:}b\ ±xgcD^xy-f-i'7 L -rffltC*5tt5 
[0 2 2 8] c<D£?fC, ^P-/Vl/«ail«> P--1f 
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o/^^as^x^yf-y^m^wit^mx^ 

[0 2 2 9] ^D-/W£il«fci;, ^SfcJSUTHSfS 

/^xKT*ntf*n5yD-/vi/»asiH«fffia^-^ 

'y^rtO^tUffiWcfi, 2OC0^n-/VbttaSlK g 
l, Kg2aMftW£ira>3fc©fc-f5. ctt&ovvf 

D E S U XA£»ffl tT 2 OOafcfflV^TJittfE 

[0 2 3 0] 0 2 8c7}£QS>'-y;/Xtc^-r££agt;:o 
013, a— <ff ? /UX*iJ»ap > ->XxA*;P^oea"Ft 
[0 2 3 1] ^-ffVWXffflW^n-A^ 

^foeSTK 5 h-fe tett Ltx-ff>W 
TJtftLXWLU ■t*a.VT<f?-y'7t?$-}-ty 

ftfCH^LfcBl 6WTLS 1. OfflaSfcti, ^ffi 
IEW»OSilE^**n, ^HBfc*Si;T;l/-hBiEH (C 

a) $?o^Bm9!*«wmicttiE$n«. ccdis 

^!itr>ayl (K s e s) ^fttt^o 
[0 2 3 2] IgS^IE^fiSci-r^il, ■fe+a'Jf'-f 

si: KgMifs*^aj^-r§= ^-h-ty^ti, tx 
\z.&m*-<owgim>fu->%)\,#mu ■ k g 3, 

«S*^jSCT4eScbfc^n-/^±ta^ : K g 3*g 
WltCfc'^T^bfc-b'y i/3 : K s e s T"Hf*t 
fbt, B&^{t«r-^ : [K s e s (K g 3) ] ^a- 
ifr/WXC-b+aU-r-rf-'y^fcWLTjiSffl-rSo 
[0 2 3 3] **3.V?<f?-v7<Dffltomt. 
•fey^A^-b <y a y^-THf^kSnfc ^n-^;l/ft 
a^ : K g 3, -T&fc)^ [K s e s (Kg 3) ] 
Mf fflSffJIB#tc{SWtfc-b-y^3 

xmmmmznfthxvti-'VipkmM k g 
[0234] ^n-zw^asi : k g 3<D®mamt 

Si:, ■b^raUr^f-y^fBiJIWapti, ^a-/^tta 
« : K g 1 S\ «j#Lfc^n-/^«ag| : K g 3 teg 
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-/^^ftiiSItt, Kg 2, Kg3t%5 0 a— tfrVW 

Tj»*W&*fc*, [Kg 1. Kg2] 0l(B#|»ffifc0f 
■ST [Kg 2, Kg 3] i:ftIE*5o ?n-/W#il» 

[0 2 3 5] 02 9te, a-ifr/WXiiit^-Hry 
[0 2 3 6] H2 9©jBas/— yyx^^-r^ato 

^TRWf *. H2 9te£fre>-b*a'Jr^y7f|iiJffl) 
gp, a-lf'-rV t-fxWHft. +>— td'X7°n/^#\ i/X 
r A * ;l/ ^©gST fc ft § -9" #- h -t > * £ *5 5 $&3! 

[0 2 3 7] h-t s*ff*n*«frc*^ 

SI : K g 3 5:-rT*tca— yr/WX(c|B^*<D^n- 
/Vl/ftaH : K g 2THf*§{fcLTf*-* : [Kg 2 (K 20 
g3) ] *£$U iintc, ^-Hr^^Offiffia: 
K s sT*S£*#UTtf-lfx7n/W^fcjg{tf So 

tf-e*:/n/vr*tt, f-* [Kg 2 (Kg 3) ] , 

S i g [K s s] 5o ft*, A, S i g [B] 

[0 2 3 8] a— tfr/W X$iJfflg|3^yn-/^ 
ttilSt: KgHfrS*^-b^a'Jr^^'y7°ft;yfflg|5tciM 
{If 3 4:, ■b*a'Jr-r*'y7ffl»a5«, -9— tfx7n 

TLS 1. OjaaSfeti, fl»J*.fcf&IJMi 

n> £SWcfSi;T;I'-hBKJa (CA) S-e©^BBIMiE 
iJWtfil&WKtfcliESrttS. CfcfSgBaaKfc^T, -fe 

KKses) *m?%* 

[0 2 3 9] tBSgU^i-rSi:, Wa'Jf^'V 40 

mm-. KgMffs**m^-r§o ^-ex^n/v* 

tt'9-!p-h-b>^*^SfB»f*Of f -^ [Kg 2 (Kg 
3) ] , S i g [SuC] ^a-ff/W7©Wa'J. 

[0 2 4 0] •fe+aUr-rf-y^©»J»95{±, +J— ex 
-fu/UPfrb, yx-vtyZfrbfDT-z [Kg 2 

(Kg 3) ] , s i g [suc] cD$m*%v%t, m 
gacom^-rs^a-/^«a»: Kg2TBi^k so 
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Sttfc^n-M/l/#iI» : K g 3, t%t>*>, [K g 2 
(Kg 3)] KttLT, 7-"n-;^II:Kg25ffl 
v^c«^WI^fTLT^n-^;l/ftffl» :Kg3% 
WtftSo ft*, ^-h-b^^coa^ttSEttitJp-h 

mmmm^z^— (ff/^xKMLtr-^ [k g 2 

(K g 3) ] , S i g [SuC] i: £ fefCjMMt S*\ 
[0 2 4 1] ^n-/W4$ffii : K g 3©Bti#fc:$#rt 

i:Kgl »tii*fiH*K^a-/Vl/«a« : K g 3* 
WT5^D-/VV«ait«, Kg 2, Kg3c0 2OtcM 

[0242] [-r bfcmmtw® mmt 
■ayfyv, sb^^mt^yf-yymit, mfsvm 

y^St, n^xy^W^ft^rff ft 5 C i:*^Si:ft 

[0 2 4 3] H3 Ota— ifr/VT.^-t+aUxi'f- 
•yyt, T^—?*fi?5t%'e?<D=iy7-yyM, nyf 

[0 2 4 4] a-ff/^Xtt -tr+aUx^y^ 
10it, 73-^2 8 0, ^-KrVx^, 77'r>a 
^^Ey^e.ft5p<4ErUg|52 2 2it, ±&V7h*x7 
tcj;D-b^a 'Jf-Y^-y 7°2 l 0£, rn-^2 8 0, 
^^Ug|52 2 2tWUTr ; '-^AtiJ^, &«$&giSfilfr 
W^a-tff^W»IW2 2 1 #&5o 

[0245] ^yfyymmmmm<Diy-^yxK-o 

r/WXffllM»Sl5 2 2 1 KAT^^tiSi:, a-lfr/W 
X[|iJ{|iM2 2 Hi, **l)g|5 2 2 2 tt&tt^tlfcffi^ 

ay^yyfcWi&rsilttKBMI (AC) Z&mt&o 
ttlSCfeDftimsn^JittSEK* (AC) Ji-fe+aUr 
l OtfESStU ^a'Jf^772 l 0 

rtT, sttiiEB^* (ac) ottSE5aa^fT*n5o 
[0246] sttfiH^ff (ac) tmvmic&mz 

t, Wa'Jf-ff7y2 lOtfn-^2 8 0^ 

v^TfflSKSE* i tf -t -y ~> a ^«o«wjaa*^ff * ti 
i±, stti0)]« (ac) ^bmitibr^mt^y^y 

M Lfc-b >y ^> a ym^m ^tn yf y ym*W%mtL 
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[0 2 4 7] a— ? - 7>WX«iJ«2 2 1 t±, 
TUXDtttU 7*3-^2 8 0^^1-5. r'3-^2 8 

[0 2 4 8] ±^LfcT f 3-^JifflLfc«iaT{i> 3 10 

yrv > ySi«-t*3.uf-^^-y^2 1 ortTtiffiffl^n 
av\, £fc> fn-^ii, ^mt^yy-y^'mitL 

X, 7tP^W^i:LTW^*fettW»'r-^*nffl5W 
^t§o fcfe, RttSEWS (AC) fcii, |f,fiEt§x3' 
-^O I D^!S!iE/a^fSaibT i fej;<, -b 
+ a U r -r f - <y 7° 2 l 0 1±, tlSgfiEBf fcr 3-^H 
Wm (AC) fceastifcra-^I d*KSE#j£ 

Tyv®.*Tn-$\zfotst%o 

[0 2 4 9] r3-^ffl^fc©a^-^ryXtc-D^T 20 

ei 3 \*m^Tmmtz>o ei 3 uas^x, s^e-b* 

a'Jf^'yT', ±14771-7x7 (3-^-rWXffllJ 

[0 2 5 0] 5pJffl#{c«feSX*#SOJ*mi:J:0, 3> 
r yv?m% Lfz 3 yf wfllffl»jW±ffiv 7 h 7 x 
7 (a— •fx/WXffllWtpao KArtSftSfc, ±{47 
7h7x7 (3— Ifx/WXWJPSP) tiffign^rv 
7ic#)S-f377U^— >3> I D*8ti#U 77Uy 

^»$n/c77u ^->3> i Dicm-.t%mmiw9 30 
(ac) %ttjSt«o 

[0251] tttzbiAmztiitmtiWfm (ao 
a, his-hhh* (ao ^mm^tttic^av 

(AC) ©^«15iRL> JUxSEES (AC) 
Hft (ao ^e»Bf^fb3yf-y-y^^DtijbT, $ 

WMrfttSt^t, ±{477 h 7x7 (3- 

ff/wxiaw) kiss* «y -b-^w^-rso 

[0 2 5 2]*(l, -b^aU7^f--y7°i:'f3-^Hfc 40 
fci^T, ±{477 1-7x7 (3— 9"7VUX«iJM) 
*ft LTffiStBSEfc ± tf-b -y i/ a y»<D«W«ia*^ff 

t± Httti^« (ao frzm&LrcmmtxyTy 
t7->3 ymtm^x 3 yfyvMttm%mt UTr 3 

#ft**ff t t 3 yf y y 8 W#t £ 0 

[0 2 5 3] *fc, 3-+frVUX»J»(i. 50 
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mmzftrcmiteyf-yytttkmLxmitiu f 

[0 2 5 4] ^fc, fn-^ffl^fc3yfy7«^ft 

mmic-o^x, M3 2<D7u-%mmLxmmtz> 0 

[0 2 5 5] Xf'yT'S 1 0 1 (Cfcl^T, ?Uffl#tCj;5 
A*¥ao»f^£ it), 3 >r > y *Jf £ Lfc nyfy 

yjfiifflasiw±ffiy 7 h 7 x 7 (3-if ^/ w zimm 

BP) fcAT^n&i:, Tsf-'yT'S 1 0 2fcfcv>"C, ±{4 
77h7x7 (a-ff/W^ilM»gP) «mS3>f- 
y^tcMiStST^'J^r-yay I DWIU Xf7 
7S 1 0 3 fCfc^T, T^J^-yayi D(CS-^V> 

y a yi Dictu&tzmimwm (ao ««ifg-r«o 

ttjRt«tt)ftiHi«nrcJittiiEW# (AC) ti, Xf7^ 
S 1 0 4lO5^X, mm®* (AC) MMW!: 
£fctC-b*a>J7^-y7°tCiEjMSft, Wa'Jf^f 
-y7*f± Xr7^S 1 0 5fcfcV>T, JUtSE^S (A 

0 o«aE»a«iifTb, (ac) mm® 

lC&&h?Z£. Wa'JfYf^tt, SttCT* (A 
C) *^B|^b3y7 L y^«^Dttitr, S^ftHl 
fc^fftS. Xf-<y7°S 1 0 6JCfcV^T, ±{47 

71-7x7 (3-ifrVWXWfflW) KJSg*-y-b- 

[0256] jmtsHBS (ac) ^lEsaafc^t*^ 

-a-«, Wa l )f^7?'tf3-»:^ 1 T 1 ±{4 

77 h 7x7 (3— ifx/WXW^JffllgP) 
^SEfeitf-b >y ^> a >«®#*r«yitf HffSns. 
WU:f±, Xf7 7*S 1 0 8i:*3VT, ±{477 h 7x7 

(a-if W Xffljf iJfflSP) ^ a -b*a U x-c 7°K 
HilIjE3vyF^j : $n, Xr-yT'S 1 0 9tfev^ 
TWa'Jfyf7^5 £>JSg%±{47 7 h 7 x 7 

(3— tfrVUXiJflfiW) AWL, £S>tc, Xf7 
7S1 1 OtcfeVT, ±{477 h 7x7 (a— tfr/W 
xi»^3) *>6f3-^£i 2 fgfiE3 ?y K^Jgff S 
Xr-yT'S 1 1 ncfeVTf f 3-^e,<0Jc5^%± 
{47 7 h 7 x 7 (3-ifx/W XfflSiJffllgP) ^S{I 
Se.fC, Xf77S 1 1 2t*5V>T, ±{477 h 7x7 

(a— tfrVWXlffiiJfflgP) ^6-b+a Ur-c f--y7°{c 
^3|fliE3V>F^{T$n, Xr>y7S 1 1 3(c*3^ 
T±*a , J7^"y7>P>«j£g£±{477 h7x7 

±+ a U r -r f - >y 7fc £ 5 r 3 - ^©KSE*£ffii*^ff S 
n§ 0 SIEJ!La*^fiStLfe«# (S l l 4-eNO t± 

1 1 5(clty 0 

[0 2 5 7] X7'y7S 1 1 5{Cfe^T> ±{477 h7 
x7 (3-^rVWX»JffiIg» fr57'3-^K»4B 
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SE3vyKtff§fT£ft, Xr7^S l l 6 icfci^Txn 

HMD 1$%.m%o CfOVmc^x, rn-^cj; 
St** 'Jf-ffy ^OMOJSStfWSSftS. fSSE 

jayiaw©*^ (si i7T*NG) t<D'&<Dmm 

[0 2 5 8] Xf-y^S 1 1 8tfeV>T> Wa'Jfi' 
f'y^ft JBttSEW* (AC) A^ffit)tHUfeH&#ft3 

(S 1 1 8) LT, ±&VXh7x7 (a— tr7WX 

mmmb fciMffl (si i9) -T5o ±sy7h^i7 

(a-lfxV^X»Jffl]g|3) «, SfibfcHg^ftnyx 
yySfc'rri-^fCjMfl (S 1 2 0) T3 0 

[0 2 5 9] Bl^fknyxy^H^Sff Lfcrn-^ 
{4, -fey^a y^lfflUTBg^fkayxyyaoa^ 

itzmnLT^y^yvrnz^m (sizo f § 0 ± 
t«*fl?nrcug#fk3^r>y*«iR (s i 2 2) lt 20 

SMffiU xn-^Cgfi (s 1 2 3) *S„ rn-^f 
14, A7^ftfcHf^{t3yry7%ftM#Lfc3yy- 
y^SI^SifflLTS^fc^a^llR (S 1 2 4) *«„ 

[0260] c<D&o\c, 

Eff*frSftT, ffl5!£J£«l££££fttLT, 

3 y Ml^ft L fc 3 yfyyi^fn- Pic&ttit 5 
im^ Lfco-e, MSSfts«8Bfcfe^T©;w#f 
frSft, lEi^yxy^fOffl^si-s;:^-^ 

30 

[0 2 6 1 ] [3>f>y<0*iJfflMll] fttSiWLfeJ: 
5 ic , 3 y r y vm\mw!m&tm Lfc 3 vf - >y 

uvf-y v f mikftmmw ®fc «, -9-- ex 7n / w tf 
yf yy<0*W«I[S&, fUffl»««*i 

fflnyf>y*\ ^ s»tc. i^^yfyy. MTOJ 
pg3 y-ryy, ^-y^^yiMilStWinyf-y^, t77 
^ym^jpinyf y 7© i^tft^fe&fr stiffs 40 

mmmmtst. ■ mmmvM&vmmmmm 

[0 2 6 2] nyfyy^H^tiU Hv^D^SO 
3 y f y y % Uffl % x U - i: 1" « n y r y y ic ftjSf § JS 
ttfP«&, ±iH£#tf«vMffl9fcLTK5&£ftS. f"J 

mm&*wfe\,tzuy^yv\mm%mmmm\t, 

ft5 0 ipJfflHHStM^SLfc^y-rWfc^fS-rsjg 

ttiEw*«, ±®feff^@«iPjiBkUTa8S«n, 
«smc!3£{( (Mi) Awssn^o ft*, 0& 50 
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* l r 3 y f y y spjffl *Hff f ztyvJym&M 
mt, tr x y a > u ?\z & v > t @»*se% l 
jittSE^«fc:ias«nfeaisiajfcwrt03>x>yf!iffl 

% a 3— «fx/vxi?(4, sttKs^»{ciB^$nfc^n 

&Wft*aas«o^-r, j-xt, ^Hj§-r§o 
[0263] 3-+fT : vwx(c*3^r3yry > y^iJffl 

©^aUyVv^yXfiT^lrf 3*7^yffla, if 
- tTXX"n/W ^teJBttlEW**^ LT«^*ft«f 

5 * y 5 y aaatffc « c t a^tc^fc a 9 -es •& . 
mm.mm^tm^nrcnyy-y-j(D%m^mt^rc 

^xrtT«-r§3i-77^y©a, ^-tfxynM^ 
•ecDBSii^sh-r^^y^-ry^a^fe^o cwo 

[0264] E3 3fc3>-f yy%mn^n^>=L-^f 
T'wxvmfiztizmmmw (ao ©f"jffl®a7 

n-£^fo $aS7P-£D^Xr-yX(c-o^T^-r 
[0 2 6 5] 3-ifr/Ux«, %mtt&3>?-yyic 

*fiStSJSttiEW»*7yU^-: ^y I D (nyfy 

CD7*-V>y HUgjaa^^fT (S20D t5o lit 
IEW*Ji:^S*S^SBS« ft, BB»©W»«IS«^r«l 

•f >yXS 2 0 2{c43VTS^SE*^fT^ft^c 5fek:t 

^L/cj:9tsttiE^»tct4, m&mmwmm cm 
x tf -9-- ex x"d/ vr ^) tfttan $ nr 

s ^raa^K *) tu l TS«^n^a (020 

Ll^o ft*, ZlOj»a«iSE*^©Ji^fe» 

So 

[0266] Xfy7S2 0 ZfOm^WBS-W^Wi^ 
nfci^iiXfyy*S 2 0 3fclty 0 Xr-y7S 

2 0 2 lom&tmwm&mas^T, timmttiLtft 

0, SttSEWfciSWifeDfcWSSnfclB^tt^ Xr-y 

7s 2 0 5Ki*, ^(^sttiPM^jiffltrc^aa^ 

fr^ftT, &M<omm. tKttxyf-yyfmmmtf 
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[0267] mnmwmimwLtfr^tmzisn, xf 

>y7S 2 0 3tltyfc, Hft|EW«rtOBtt1t«7-<— 

-5, xy^jyftm^yTyvfr. *yyjy%m^y 
$ot, xf7^s 2 o 4<D*y7-r>'5aaT'S«*\ 

t77^yt'$5l^(i, Xf-yys 2 0 6(cfc^TH 
t^03b\ @»SiJllTS6S*^ ! PJS«n5o 10 

[0268] xfy^s 2 0 4^^ *yy<{yn 
ftx&ztnmznzt, 9c\cwz ^m^xWRhtc 

wnmmmmm^m'D^.mwntri^o *y? 

-r^«HlO«^tt, IHIBIWK, 3:fcl±0»»D^-fft 
•t 55aa*R & 5 . ifil/BIMIB*iH*fc n >r > ^fUfflll 

Mxhtitf, 3yr^y«ow#*Riffii:-rsjaa*^ 20 
Wf s 3 yf-yyspJffl^Rfe** y -y -fe-i*£a— «f 
fWxtd&frfSo 
[0 2 6 9] Xfy^S 2 0 4fc3o^-Z\ t77 

-f ^fOT-pfcSfcfMStt, Xfy^S 2 0 6-eiv^ 

a-lffVWX<Dt*aUx^f v7©+f-l£X 

ffi»»c*rjis > r«"9--trx7 , n/w^ (sp) mxhi- 

-v^H : SC. Stopub. SP. KTRg^ftS 
tlfeny-ry^Sir-^ : [SC. Stopub. S 30 

p. k (Kc) ] mmnnrtst), a-ffvwxt 
», ^-^x7n/u^awcis»$nfcs parts 

XhU-^IKBSlS C. Stopri. S P. K£fflV> 

T'iS.mmm*Mft tm yf y*ygt : kc%hl 

[0 2 7 0] Xf77S 2 0 4fc*5VT % *7 

f ^yfijffl-efe&t^JSSft, xf >y7s 2 0 6-enHR 
MBa nyfynMi: was ftfc#&fc t±, a-if 

mzmnLXs 3y7-yvmm<D»im\%.*Mnvr<: 40 

^mmtm^mfi^nrc^mt^y'ryym^mmm 
M*MfiU fro, r/wxrttjea-rsnyry^fij 

[0 2 7 1 ] Xf y7S 2 0 7 Ofijffl @»ear-^0 
jy$- mfi, nyf y^iJfflSlMaf'-^ 

/ssaa-efes. fij3»saf-??Ky#-b 

*L9& HttSEWStSrJ^T^sns. nyfy-y 50 



ftffl 2003-85321 
64 

fUffl@»©SaiI8«K«\ 3 yf yymm&mffi:* 

— tf fv wrtct+aUf-ff-y T'-eeat s sir* 

fc, [H]f(Wa7r^;l/^-t^aUf-^7 t -y7 p ^oM-g(5y; 
*U (#J;tJ£M-Ff>X*) fcf&IAWaU eaf- 

2 CD/ \ >y i/ a {gcD&^-fc: 3- a U f ■< f V 7Vi£> * * U K 

arrso xf >y 7s 2 ostDm^mmmm^r y-y-t? 

-v^f&Xf >y7«\ ±$©S 2 0 7 OfUfflHSear 
-?©^y#-h®afr^7Lft;:££-t:*aUf'f'f 
v 7> 5 Hz* a U f f - y 7ft<£>a-if fW X fflftj 

[0 2 7 2] iH~fs m&mW* (AC) IcfSig^nfcrJ 

y^y^nm^^xv<oAwmmmLx, m 
(a) ty^y-mmmm^yT-yv 

(B) ^y^y-fiJfflHI^JRBayxy^ 
(O ^^^y-M^^yfy^y 
(d) *y<7-( y-%m®m>M=iy7-yy 
[0273] (a) xy^y-mmmmxyTy 

y 7 ^ y$aa-?& d , f0ffl}»M£nfc3 yf y >y 

[0274] H3 4tc^-r^a^-^yxa, -r-eetf 
-ex7n/w^e»H|^k3yf 

f y vM*m b feJBftSEW»«5MBff*"e3B* a-+f 

T/w xtfeits saa*^ t Tfc* o s 7x^e> a— tf-fv < 

^rtoWa'Jr-ff-y ^JflPSP, a— if W XM 
« (±ffiV7h7x7) > *5<ttf-9--tTX7a/W^ 
cojn.a^LTi-'So 

[0 2 7 5] 03 4T*«:, S±S (a) tt, BttSEWS 

^tcfe^-5Ji14SE^S^e©-9--ex7n/K^ I DUS? 
(b) li, BttaEW^-b+aUx^f «y7© 

•e r v •t x nit^ y * u tcistt $ nr i/ ^ Jf^tc fcnt 5 

HttlP^^^cO^-^xyn;^^ I Dffi^fiia*^ 

u :w (a) , (b) im&uwm<DfeWi®.micfc 
vxmfcmc$zft?z° u) offls^iEsaa, (d) 
on yf yvmmimtnmKmii sns„ 

[0 2 7 6] Sf\ (a) OWmfrZmitZo (a 
1) a— iff/WXSiJSJgPti, jpJfflWfenv-fyytcW 
ffc* SHttSEirafcat&Bfc-fe* a 'Jf^f7 

Sst<f§o (a 2) Wa'Jf f f" >y7$IJ»gPtts f-7 

7<o**v \cwm&<ommmm<o v x b %a-ff 
/^xsijflapjcw^b, (a 3) a—tf'fvux-ea^ 

S£D7^7-*ftJ;t) UXh*^"f*. (a4)a-nf 

ag^s nfc u x h sfijffli^a yfyy cjtjEt 5 
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m®m*s (ac) i^tiit^ma'; 
T4i-vymm%t>\zMmtz> 0 (a 5) wi'jf^ 

0E#HiLTa-lfx/^x3?J®8l5fctfj£U (a 6) a 
— *fr/ W X -ctittJS© 75 * Iffc * t) JlttSEWt*^ 

9¥? (S P ID) M#f 3 0 

CO 2 7 7] IMMWa'Jf^^OW 

■feXBJffift^t'JKt&WSnTI/^^i, (b) CO® 10 
SfcfcS. (b 1) a-tf7WXSJ»8l5tt, fljfflifft 
n^r^yfcWiS-rSJittlE^OttiR^RL, (b 
2 ) a— tf W X T-fittjlcD 75 ^ -»f(c <£ D £ ft 
fcA C UXh^P>fiJffl^nyxy^fc^jlSt5Stt!iE 

ub* cao *jt£u (b 3) mfr&^xmmmm 
(b4) mmmw®M ; r-z*<D j *- ex 
•fu/ui/mff (s p id) w#-r§o 

[0 2 7 8] ±K (a) , (b) O^fW^IitJ: 
oTffil#£ftfc7-ex7p;W71®ff (S P I 

d) « % ^-ifx7n/w^a«s«*^, fflSEim 20 

1;: , -9-- t£ X 7p/ V fflffi« / N© 7 ? -trXtc 
tfX7P/V^»cig5£Sftfc^X7-KA£tfi£g-e 
SO, a— tf(i, BftiP,3«fr5>$f#L7c7-trx7n 
/W^HW? (S P ID) (cMt5^X7-FAi] 
9— -fcTX7P/W ^WatB^cD7^-feX%^ 
frU El 3 4 CD ( c 1) KjjVr-fe+a'JT^'yytlJ- 

co 2 7 9] c<Dmmmmmn. mmwhrcm 1 6 
©tls i. owsMtrdt, *<om<ott m*.n'£m 30 

ft> &gKJE&i;T;l>-MBiEJa (CA) STO^MMK 

uwjw«RWc*aiE?n*. ucDgjmatcfc'v^T, -t 

(K s e s) S#Ptf 5„ ®MMmW&?5£, 
ic, 03 4 (d) fc^-fifiS, nti^nyfyyWI 

CO 2 8 0] (d 1 ) a— ifti, n— <fx/UX©ttB 
©79->1ffcJ:»)aw*nfcSttiEW»«flil5fll« (3 40 

[0 2 8 1 ] (d 2) tta.Vm-v'/toMmt* 3 

-ifr/w xa?j»ap*^©jiitsEw* (ac) mm* 
sti* w^.^c^Lfc02 o«saa7n-^raitcD 50 
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iz-^yxt^oTUff^nSc 

CO 2 8 2] ^t/SCT-b*a<Jx-ff->y7 

sttCT* (ac) fo<DAcumv&m 

X, ^IWIISEW»©IWiE*ffft5ck)WSFSbl\ tfiJ* 
tiHtttiOT* (AC) ^CfflW»7*5 
SftllB^tf (AC) ©afT#O^M»IE^» 
©^SE^fTft 5 C &c <k o T, IS§IEM<D£^tlIPj«£ 

its mm±mm?xmm&mm'm\<\ >v-v 
mmM (ca) <onftLft'£mmmim<omuz?nff 

C 0 2 8 3 ] ( d 3 ) Sft!IH^#cD^fiEtC «fc 0 , Sttfl 
BM©B£K& L<D$lJJg;W# &ft£ Wa'Jf^f'y 
7cD$iJffli^«, 7-ex7n/W^cWLT«ttIIB« 

ymmm=i y^yvx&zc tmmtti, tr^w 
-r^<D«wrsi8ffi»: s p. s t o. Kuvsmtsti 

ttxyf-yymfDT-*. T&t>%, [SP. Sto. 
K (K c) ] rfflftWSttTVSo 
C0 2 8 4] (d 4) ■b*a.VTJ=?-v7'frt>m&Mffl 
»*5Wibfe"9— ex7n/W^±, JHttSEUH#<D#& 

7-r s &niifiimi % *5 ± tf *o±tt4»ii«Kifl«*3i 
M-£ftrc=iyTyv<Dmmmm%?y7-yvM: k 

cOBf^fbr-^: [SP. Sto. K(Kc)]cDfg 

co 2 8 5] f-a^n/vfw, gaomw-rsffi 

^i: SP. Sto. K^fflv^T, B1tliEW#{c^tt$ 
n/cBl^fbnyry^SI : [SP. Sto. K (K 
c) ] flDfc^MifcHfTU ^yfvyi: Kc» 

fflSBSIEffiaicfeVT^jaUfe-fey^ay*- (Ks e 
s) TBg^bLTv 3— fff/WXflD-fe+aUr-i'f-y 

C0 2 8 6] (d 5) -tr+a I Jr^^^7c0^lJWa^ 
•9— ex7a/ W ^> 5. -fe >y ^> a y^-X^mtS titc 
uyf-yvMs [K s e s (K c) ] %%in 

tzt, mmmmicUGLrc-ty-y3y*-zm^x 
mmmmzmiLxziyTyvM • k c%Kiits. 
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f-V/fflWmi.. a—VT'WxmWBK.xvr-vytD 

ommmwnT l it c t s . 

[0 2 8 7] (d 6) Sfca- tffVVXTOWBBfci, & 

/y [Kc (Content)] ^a-ff/WX^tD 
(flRtf/v-FfV X*) , *4^ttt*a'Jf: 

4raUf--f^y^'fca6flllU (d 7) Wa'Jr^7 

mm LTzmmmmzmnu mmmmm^t lx% 

ZtiZ 3 yf-y y%3— lfT/WX*iJWa5Km* U 
(d8) 3— <fx/UXt±, 3j/fy7«?!it«. C 

ne>©$aatf$s7t&^ (d9) Way^f^ 

OUPjmiStt, ffl#fk«iat «fc -a TKH L 7c 3 y r y y 
1: Kc, feiO'nVfyy (Content) 

[0288] LnecieiictoT, +r-ex7°n/w 
^K«fc«jittSEW3 (ac) Km-3<mmm<DmmM 
mtmt>n, mmztimmmmfix&zm&icfofr, 20 

3 yf yvm : k c *>Hr*a 'Jf^f'y :/£33V>t«*§ 

•y 7 tc te v 3 y f y ymtmw sn> ®t# l 3 y r 
y ^iitc i 3 yx y s ycDffl^^iifT^nT3— +f r/^ 

^Xfcfe^T3yryy#JffitfRjffifc£5o 
[0 2 8 9] &4b\ D--ex7 s nA-<^>P>3-ifrM 
>f x f 5 3 y r y y BEfi& § t > itm&tmw ( a 

C : Attribute Certificate) <D&MBM£ LXli, 3 

— «f«^ 5) +r- trx y n/ w ^tjt-r ss^tstj^T 
i^»mi(7'-yyaS ; &r;i/)cDv^-rn»mit^-c ; 

^^46B^3— <f|Rjtt<9JH4SEI8# (AC) *ffjSL 

[0290] (b) ty^^y-mmmmm^yy-y 

*fc, S1tiiEWSfciaS?nfc3yryy*iJffl*ft*^ 

y?'<ytimx>h*), mmM&mmzntc^yy-yy 40 
T-feS^coJi1tSEW»<D^f#^ p>, 3 y r y y 
t?©ffla*gi3 so-y-yyxgiEffioTiJiiiBts. 
[0291] K3 5(c^T»y-^-yx«, sfctcaumi 
L/cgi3 4offiay-^yx^[wni, -fT'fC+f-lfX:/ 
p/W^6Bg^ft3yryy^^»T-fe»), $ 
3yxyytm-T5fijffl*ff, mmt3>Tyy 

X tc 43 it § JUS** LT43 0 , ft 6 3— 9 s 'rV WXrt 
(D-b^a 'Jf-ff'V t/ftJW, 3-if TWXf&JffliBP 
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[0 2 9 2] 03 5 ^^-rSQH^, a±S (a) H\ JB 

¥ 1 d nxitsaa, ( b ) {*, mmmwtf-t*!. 

Must? 7 * -b x * ^ u t mH s nr v 

$aa**u ens (a) . (b) im&mmmvm 
{miciz^xmnmcmm^o (a) , (b) <d&m 
at, ( c ) omsmmmn. m 3 4 z$mLxm 
Lrc*y^ymmffl®<DM£<»&mh:mmx*&z<Dx 
mwzmtz, (c) ©ffls^iiE*Mj£-r§i:, & 
k % 13 5 (d) fc^-rsaa, -f&^nyfyyBtff 

[0 2 9 3] (d 1 ) 3— tfii, 3-tffWXCDttJi 

yryyfijffl^ff) mmu mmmmzmbtcx 

y t y v nmmM* -t * a U r -r f- -y 7\c M b T t 

z> 0 iKDmicmf^m^tmnm^Bm^nfc^yT-yy 

[0 2 9 4] (d2) -fe+a'Jf-^^-yySlWti, 3 

*s<i-rsi:, stt!i0^««^tiEffla^^Tt^o we 

a«> WAtf$feK:|liWUfcH2 0OJttS7n-kRH«o 
tv -t:^aUx^f--y7°OSiJfP0Mi, mWR9 (A 

c ) rtoA c u&go&fflmummw mc'&^x u y ^ 

*V\ ;b-hESE^ (CA) ©^ffLfc&llfifctEifl*® 

[0295] ( d 3 ) m&mmw<D®mc «t o , sttti 

y^sij^spti , it- if x y a / u wen i xmmimw 
*mtt?5o mnMrnmai, mmm^tLxicy^^ 
ymLmm^yy-yvxhzc tmmzn, tram 
*ijiaiHi»^«5itt«nrv>*. set, it-ex^n/w 
mum? ^vmm.- sp. sto. K-eug^bsnfc 
nyfyyiof-^, t&fc*, tsp. sto. k 

(Kc) ] *^jW$nTV^S. 

[0296] (d 4) ■t^-^VT^^yyfi^mmim 
^ii^a^T-r^c $tc zcDm, m'&ummcvy 
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mmr-ts $jj8MRiaft*ffi8?3. mmtmwi 

Si, ^-£X7P/W^ftcDT-^-Xfc|g*ft$ftT 

[0297] m®.mmwicmm-$tirc®m\m\*i<D=iy 
znrc3yf-yy<Dmnicmm?%3>T>ym: k c 

©B&^ffcr-* : tS P. S t o. K (K c) ] <D$m 

znntZo -9— trxyn/u^f±s SBomw-rss! io 

&tt : S P. S t o. Kfcffl^T, «ttlE^#Kl»JW« 
nfcBf^kny-ry^SI: [SP. Sto. K (K 
c) ] ©*g*§{bS&g*#if?U uyy-yvm.: Kc« 

[0 2 9 8] ^- ex^P/W^tt, x-*^ 

ht%wmzfi%oo sec, 9--ex7°D/^^ 

^DtflLfcriyf-yyil : k c %5fe©*BSa?iE«ia 
Kts^T^fcLtc-kyisay*- (K s e s) TBg^ft 20 
LT, a-^rVKXco-b^aUr^f-y^cWtT^ 

[0 2 9 9] (d 5) tta.VTJ^VftDmnmts 
■9— ex^D/U 6 -tr -y a >*-T*St§fkSnfc 
nyfyyl, ?Ht>*>, [K s e s (K c) ] £§fs 

mmmmzmiLxayTyvM: Kczwmz* 

Wt**tf£7Lfce:i:*a»rrs. 30 

[0 3 0 0] (d 6) SKI- ^'-rV^XftiiJffllgpa, $ 

[K c (Content)] fca— tff/WXrtO 
^9 (WIVn-KtVX?) , JBSWiWa'Jf 

frsiKiit*. s&k, m^Lrc^mt^yf-yy^ 

*3LV5-4?V7lcmmU (d 7) Wa'Jf^^ 

ens 3 yfy^^a-ff/^xsjwtiiiA u 40 
(d8) p.— •fx/vrxfci, ^yfy^WiSo z: 

ns<Dffla*^7-rsi:, (d9) t+a'jf^^y 
©swapa, a^ibjaat «fc o xmn^tc p yf>y 

It : K c, feitfnyfyy (Content) £5£g 

-rs» 

[0 3 0 1] cn^OffiafCi^T, 9--ld > X7 P P/W 

^(cissttSEW* (ac) \cmn<uyfy^mm 
mvmmmmmjbft, mmnram ^nx^ s^ 
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l 3 yf .J: s ^ > r v y 0>&.m&&i stir 
a _. 9*x/WXt*V>Tn>"f yy$mtfnff&t%:Zo 
[0 3 0 2] ■9--trxya/V^e.a-^fr f /^ 
^XfctttSpyryylBfsSSWi/lttlHW (A 
C Attribute Certificate) ©SEfSff^fii: LT«, P 

— tffflfr 5 -9-- ex want %mmcm-3^x 
m zn&jmt. a-* <Dg*©*r**fc mm < «* 

tf^7X*77^iift£*gA,T'^Sa-- 9 f t«LT, 
-krxyp/W^e.-y^CjMfflt-SV^STVi/ 

y-y ->a3y^rx;Wc*3V^Tfi:, +r-t£X7 P P/W 
^*^46B^a-if[R]tt©JBttaEW» (AC) £fML 

[0 3 0 3] (C) ^7^-ry-Si/^t)P>'r> , y 

y^jyvrnxib*), m^w^^yv-yyx^^^oy 

3 ecD^-yyXERC^oTl^-f 3o 
[0 3 0 4] 0 3 6tc^fiaa^-'y-^X{i > JtfciMW 

- e x 7p / w p> Hi m bp yf> y %£tffi8 

9> W X E fett 5 KUIfc t Tfe 0 , Kfr 5 a— !fr / < 
^Xrt^-t^a Uf^f7 TliJflgP, a— 9"x>^X$iJ 
flSP (±ffiV7h*x7) > *s«fctf"9— HX^n;Wjf 

[0305] H3 6te^tsaa*» «±ia (a) t±, s 

TV^^tfe^SJSttSE^A^W-lfXT'n/W 
^1 DUXfSffiSL (b) Stt!IB^»^-tr+a9rY 
f-y/'OWt'J, -r^fe^P-^rVUXSUfl^ 
?*£D$iJflT'7 7-trX njf^^t 9 fctt*SnT^*«6 
K fe^ S JBttfflEWS^ 5 If X U ? I D ©f# 

$aa%^u tne> (a) , (b) im^wm^wi 
{micfotxwtRmcmntz, ( a > , (b) co#m 

•^o»ikra«Tf»*©t»«w*«f«-r*. (a) , 
(b) cDv^-rn^ojaa^jcoT, ^-ex^p/w^ 
iD^iR#«nsi:, 03 6 (c) K^-rjaa^ 

[0 3 0 6] (c 1 ) p— 9*{i, a-ff/WXOlffi 
yf/yfilift) %«ffib, StttiEH^#^)ifflLfcP 

[0307] (c2)«a'Jf^f-; 7"Kfl0Wi, P 
— »f7*/UXlPj«ft(p60*ttBlB» (AO 
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a«, W*.fc8te£SWJLfcH2 0Ojaa7n-i:lRl«o 
Tv -t*a Uf--f f-y^oWWWi, JBttSEES (A 

c ) rt© a c umv&mMumwwmzu oxvy* 
tz'jkmmmwm^ ±.mm^xmm®%m£*fi 
%\,\ /w-mbwi (ca) <vmiLrc&fflMM.wm<D 
m£&-e%fTt&z£ff#?£L\,\ ft&\ coan^ii io 

[0 3 0 8] ( c 3 ) MSKIMFOttSEK i 0 , KttSE 
E3©&fitft L OWSjWS £ n?> i: , Wa'JfYff 
7ff?0»i, Jlttira«rt^tett£nfcHg^b3yf y 
7§|: [SC. S t opub. SP. K(Kc)]4B 
<0 Hi LT , tf- If X7p/ W jTOKHNlcffittS tife S 
PftiSX b U-5?ffl®m. : SC. Stopri. SP." 
K fcjlfflLTfg W^fcllrrU nyf^l: Kc 
*U#"fSo ny-fy^St: K c <DW&fc$$y$Z> £* 

n y f y v (onmmm^nT t c t zmsayf s . 

[0 3 0 9] ( c 4 ) f f> Vf XMffllgBB, IX 

m Lfc3 >f ^y«*S6Sffl UT«^1-^tH^fb3 yf 
yy [K c (Content)] &3-1ff7WXrt<E> 
WLtf^-K-rVX?) , fcSWJ-t+a'Jf 
-T f y 7$i»£/l- LT-fe* a 'Jf^7 7ft© ^ * U 
fr6ftt#*5. - 8tf#LfcBf*|{b3yf yyfc-tr 

*aUf >ff >y7£&{IU (c 5) Wa'Jf^7 
7rtTWfb3yf y7lc*tLT3yf y7Sl : K c* 

mmhrcmmmm^mnu mmmm^tLxm 30 

ens n yf- y^^a-Hfx/UXMffllgPtcmTj U 
(c6) a-ff/WXtt^ n^f^-yaits. c 
np><o5aa*^Ti"S^, (c7) -t+a'jf-ff-y^ 
(DUmmts wnwouc £ o -ostff l 3 y f y y 

& : Kc, feilfn^f^ (Content) 
[0 3 l 0] ttlfiOMiacit, SttliEBM (A 

c ) < Hi/^ t) 3 yf y vx&z c t ostssaa 

tffffrn, ayfyyi: K c tfi-te^ro. Uf-ff"? 7tc 

*5^r«^$n, 3yf>7t«fjn, utffLfc3 40 
yf-y -y^fcj; 5 3 yf y yoa^j^ff^nra.— 9* 
r / U x \z *3 1> X 3 y f > 7 % "Jffl flt ft § . 

[03 1 1] a*, ±Eift««-e(i, 5awwe%*a« 

jlfflL, 3 yf y 7fi©Bi ^fbfc S P #J5SX h l/— 5>£ 
Pflii : S C . St opub. SP. K£fflv\ 3yf y 
7ft©«^c S P ttJSX b l>-i?fflm. : S C . S t o 
pr i. SP. KfcffiW£«Ji!ti:Lfc*\ 

« x 3yf yvM^af^fb, MW!)»sp 
*t)Sx b u-y'tt («ffllt) :sc. Sto. SP. K 50 
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ft) : SC. Sto. SP. KB, Wa'Jf-ffy^ 
<D* =e V ©*fj£t tfx7n/ W^<0-9— if xyp 

[0 3 12] ft&\ If- tfx7a/U£>£,3— tfr/* 
X fc 5 3 y f > y IBM* S v HiJittSE ( A 
C : Attribute Certificate) <OWMM&tLX&, 3 
— Fffllfr 5 lb- If X 73 / U 9\z ft t 3 g#tc > T 

tf^7X79^§^£^T*</>S3-- »ft«LT, +r 
-ex7n/V#fr5-#Wfc£{s^5v^37>y:y 

aiyco^(7-yyaa ; ef;i/)©^-rncDmifeRitg'e 

36So r/yS'aSftrJWcfc^Tfck -9"-lfx7n/W 
^*^46B«a— ifi^^OSttllW* (AC) fcffoai, 

[0313] (d) ^y^^y-^mmmm^yy-y 
y 

^ic, jsttSEW»tcie^^nfc3 yf-yy$m$i{W* 
yffla-e* o , spjffl m^ows znrc^yv-yy 
x&ztMsoimvtmmwvmm^, ^yf-yymm 

yf>y yfijffl t% ei jRWMofe s uyfyyxh^ 
^ 3— tff/WxrtT\ BttSEW#©ia^*fftS^ 
^THmwa^fT-rsrcfetc, f/uxrt^yf-y 
y fijffl 0S©eaf - ^ c t i; ft 5 o 3 y 

r - * <tm > *- b jaa-es 5 o 
[0314] (d- i) ^y^-biaa 
$t\ fijffl@iscear-^©-i'v^- h«aat<:ov>Titt 
B^-r^o 3yr>yfijfflnia©ea«8ttK:tt, 3yfy 

7WIf§Hg^t, Slf^r^^ma'Jf^ 
f-y^O^ffi^^U (fiJ^tf^-FrVX^) (c«M 
Wa t , War- * -y a ffico^^-tr^ a <J f -c f- 

[0315] mmcm3 izmmhx. avr-yymm 
bsaa^y-ryxsM-f 3o £A^a-ff/wxrt 

O-b^ra ijfi-f'y 7$IJ«, 3— *ff VWXiSOW 
(±ftV7b7x7) , fcitf+b- trx7D/W^Offi 
afc^LTVSo 03 7©5aa->-^>X{±, -TTtC3 

y f y 7 wx$aatc# 5 -t * a u f 4 9 -y 7 1 , tf-tr 

x73/W^©fflSEK^it, 1f-ifx7P/W 
^f.WaUf f xyT'lcWrs, »A3yf y7»c 

wis-r § BttiM«©f§^abxi§«ffla£* t rt> 
§ 0 cct, -9— tfxT'n/vi' pvffirtzm&mwi 
it, ztyT-yvmm&ftthx, xyuymmvm 
%®mm=iy : Tyvx3bZ£ttj i §d&2n, ayfv 
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[0316] ( i ) mm.mm-ez7u>w?fr 

a. mtufftizwmhrmz onmmyti-tmm^y 
mmmwmfrz. ±mcmoxmm^m^7^\ io 

;l<-MfflE» (CA) O^ffLfc^M»iEW»<0ttIES 
[0 3 17] (3) -b+aUr-ff-y^Offlffliasti, Ji 

mm mwm ^y7-yvx°&%tmizt%t. mmim 
*fr 5 a y f - y ymmcttfot % 7 7 V 3 y i 
D, (AC) i/V 7 uyy-yvmm 

WA^a^fKa— tflctOA^^nfea— *f I D, -9— 20 
a^n^U^i D<0*r-^*3.— tfr>^xfijfflig|5 

D, Htt!PJi« (AC) ->U7^S^ a-+fl 

r- £ leftist 53>f> y fijffl Isl»Bar - * -t 

+ a ijf-<f'y 7rt©;< € U tfx7n/ W 

®«{cassf*-pss*^*ttiiE-rSo a—? 
i D^ti^^nrv^o-e, n— ? i d, ^-ex7 

XtfgftLTfcJctA, 30 
[0 3 18] -tr^a Ux^^^^U^ fiML 

fu;u psmimws. t n, * cowans t ^ y 
f^y ipjffl matax - * tfsss n s i: £ a s . 0 

^afl^rttK^sns ^ yxyyflifflinawax 

[0 3 19] 0 3 st^t £9t, V—VKfn/U? 

wmmats y-txyvfuvi d> a— if ids 

[c, ayf-y , yisBy^^bTcD77U'r-yay i d 40 

(App. i D#n) % ttfc-rzmmmw (ao <o 

i$iB i T*&5ACS/>mi' (AC S e r i a 1 # 

n) , SetgiDOfiJfflnlflllHiaT-* (C o u n t # 

n) *^JSf\f^6nr«5iW*nS 0 B-Oa^fW 

t & pjffla— i«f k jia*iittaEw«K3s^ < mm 
mWift^y hzmttLtcT-zmtfLtft-ix^Zo 
[0320] 03 ncmixmmm&gMT-zvjy 
$-b$m<D ; y->ryxic~3^xm®lzuv2>a (3) 

rc^yr-yymwmcMfSrr^^J ^r-'yay l D, 50 
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SttfPM (AC) v"J7;l/S^ a^f-yyfUfflWH 
^-liX7 , n;^^I D©&x-2K*flS-f S^yf-y 

y f yffl na@ax- * *<, wa'jf^y^rt®^* 
u ©"9— ^ x 7n > u ^mmmcmmrmxh 5 ^§ 
frfcfcisu n^ryyfijffliHissceax-^^as^n 
t^*v»c t*s*ig*rs (4) 3>x y^yfijffliHia 
gar - * trx7n/u ^sa^fcjiipgii 

U (5) 3!iraSS®K7&x SttEWSSffl^-y-b- 

[0321] 03 7<omx*it, ^-ex7n/w^e 

StStfcSttSEBM (AC) 14, 
77Ur—>3 y I D : 0 0 0 1 
JUftSEBB* (AC) yV7fr : 1 3 4 5 

O^f-^^KSS^ a— >fA*ix-*«, 

3.— If I D : 6 7 3 7 
^-fcTXTtiA^I D : 5 6 7 8 

[0322] Wa'jf^fy^anaiit cneo 
f-^icMJStsnyfy^ Wffl aiflf- * * 
u rt © j*fs-r 5-9— ex 7n/ w ^a®« t * s £ 

jb^ttEtSo 0 3 7(c^1"S Pffa««x-^ (H«f 
tu) ©x-^tftcti, ^-^yn;W^I D : 5 6 7 
8, a-xl D : 6 7 3 7tcWjSf?>3yry v y|iJffl[H] 
aWax-^iibT, 77U x— y I D : 0 0 0 

u mmimw (ao -yv7)v. 1 3 4 statists 

x-£«#SL£^o 

[0 3 2 3] Hot 4-HI-9— ex7n/Vf #*»&3fR 

LfcSttiPMtwjS'rsn>ry > y?ijffl[iia i gax-- 

^^•7-ex7n/W^I D : 5 6 7 8, a-+f I D : 
6 7 3 7KWf5-rS3>r^^¥iJfflil»eaf-*i:L 
T, «f/-ctiiiPt55aa%^S:?o 0OTIS 
t/^-rSPSatS^x-^ (Mffft) Or-^"fK, 7 
7l)x-i/a y I D : 0 0 0 K IttfP^S (AC) ^> 

U77U : 134 5©iaa«ax-^^jiJ)P*n, mm*! 
[0324] nyxy^ofijffl^ftti, L^nyfyy 

jpjffl @aear - * jwwsr^ n, mmmicmm wtinia 

^lX^U^yhLT, 5^4-^3-^2^1^0i:'rS 

(D-nyTyvmm-h^zn, m^mm^umnrc 
mmmmmWLftx^y-TyvmmtfiaimtftSo c<d 
uyfyvmm^m^^x^ 

[0 3 2 5] ft*, ^-ex7a/W^e>StSLfcJi 
ttIPM077Ux-yay I D, «ft!P^» (AC) 

i/i;7;i/fcl^-<ox-^^-r-et, WjSts-9--trx7 
d/^^i d, 1 Dco+i— ex7n/u^wa^ 
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[0 3 2 6] S/c. f— ti'xya/W^SS^bfcB 
MWD77U *r-is*y I D fc|B|-T?fc-5tf, Stt 
Wm (AC) v"J7;l/Al*«f-^^1"et« ttJ& 
-r^-9--ti'X7 P PA^^I D, P-+fI D<W-lf77 
d/ w 3fflWrt © n 7x 7 y fijffl ERgST - £ ^ 

[0 3 2 7] t&fc^ [Wl— eX7"n/W^I 
D N il-a— »f I D(W-tfx:/n/U^WiInl$rt© 

T^Vr-i/a 7 I D : 0 0 0 1 > 
ACi/Vm : 0 0 0 1 
JS»)a>ryyfiJffllHlft : 2 

[0 3 2 8] 7/'J^— >3>ID:000 1 20 
A C'>U7;V : 0 0 0 2 

®*)=i>Tyymm®%. : 5 

off a war - * # jitosii s n 5 . 

[0329] 039 tC, 3>f-Vyf!lfflpr*|aiJR*a- 
[0 3 3 0] St\ XT77S22 1 fcfc^T, BttfiE 

bj3« aasEi&ao ^77u^r->3y i d, mmm 30 

2 2 2(c*5VT, Wa'Jf^f-y/rtO^^'JClS 
[0 3 3 1 ] Xf77S 2 2 3T\ 1^— ©7^1)^-^ 

3 y i DwieiKgar-^wsg^at^wssnrcJi 

Xf77S 2 2 5tCJt*. HttSE9i»fcS^T7 
7')^3>I D : n n n n, JlttSE0)5» (AC) ~7 
')7/Kmramra, fWf RltBlHiai: LT, SMbfcMtt 40 

[0 3 3 2] -73s XT77S 2 2 3£33^Tv |WJ — CO 
77^->3^1D« @aff a-f- * SSJB* w 

ttIIB»A^^f UfcSttraS (AC) i/V7)V£- 
®C? 5 Hftff 9t - ? € u rt ©-9-- 7°p / w ^ 
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-> y 7;i/ t-a-r § masax- * *^ y rtw-y- e 
xyp/w^tatH«tcs^^-p*^^^u/c^ 

li, Xf'y7S 2 2 5(Cjt», JSttSEW»tC^oT7y 
yy->3> I D : n n n n, (AC) >"J 

7;l/ : mmmm, fijfflnj^llftr-* LT, gflLfc 

[0 3 3 3] 04O£#JSLT> 0aW37r^ 

fVX*) fctettgSU gSr-^/vyi'affi©* 

a y f - -y * U fcteiffrf 5 &3gg$ i: 
w f - -y ^»J»^ 9*r"/W XftJWgfS (±fi V 7 h *J 

x7) s fcitf-y— ifx7n/w^jaa^bTi/^ 
§ 0 04 ocD^asz-'T-yxtt, -r-efcnyx^ypA 

Maicf#a^+aUr^^'y7i:, ^-k*x7n;^^ 
H©*BSKSE*WS -9— if X 7p / W ^5 -b * a 

iis^»©fgfT^awi5$£D5aa^LTv>5c c<it% * 

-ifx7n/W^©^f-r§flH4!IW»«> nyfy7 

fuffl^ff t LXs *7y4y*mx<D%m®m\m^y 

[0 3 3 4] COjaaigfllti, WaUf ^^-y7rt« 
War- ^ O^r - ^ 7 7 ■< >l*-k* a '7 x-c f- v fA 

torn***) wmi^-YTjM) tcmtmmL. 

o^gPWa7 7^Mffg©^-y^a (Hash) M 

■fe+ayr-rf-y^rtfflS'eegtscfcT-, ngpe 

n%F)rS©t:>y hSO-r-^fcEEJBL, /A-y^aflilb 

-7afa<D^<«e>y htfgffcU $fc, |B|-(D/N>y 

/N7^aIItLtli, MD4, MD 
5, SHA-lfc£jWBV>e.n*it£fcfc3U DES 

-CBC*^6nsit&fefes. coig^a, fintfi 

[0335] 0 4 otc^'T^a^-'ryxic-D^T^ 
t*. (l) JBttEW#^tr-exya/W^e)58fT 
jMff^n^^, (2) ■b+ayr-ff-'yyoSiJW 

ffitt, sttiEB^tco^iEjfta^^ff-rso ^n©a^ 

it, Wmn (P7-r77?Uffl^ff) OStlK, 7^-v 

■y mss, **ttn«ia!*^sns. **ttiE«ia{i, 

^Ijx-^t^ Lfcia 2 0 <D«ia7D-i:|B|^(D^-'7 
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xVTjf-vfomwmt. m&mm (ao «cda 
c {mmwmmmmmmm-ix v yttz'mm. 
mmfrb. ±mcisk-?xmmm&m*fi^\ ;v- 

hSSJS (CA) 056fTLfe^M«iEW»0«SE$"m 

[0 3 3 6] -b^aUr^^^ycDftiiWi^ mmm 
mmxyy-yyx'hztwztzt, M&ottvto io 
aa-if 'r/^xsjaapowa-r s h d d \z®$mmy 

tJjW&Os (3) a-+ffvW7fffiJMl3tc:fo^T[H] 

tsi7 r >i&m& m * ft t - t * a u r ^ t- y 7 fc tti 

[0 3 3 7] Wa'Jf^f'^CllJWtt, 
(4) a-^'f ; VWX$iJffl]g^5»SfSbfc0aBa7r 
-I'^'fe+i'JT-ff-v^'rtORAMfcSIJIIU SBBr 20 

tt, t-t!'X^n;K^I Dfca- f I D tCjtJSfrftt & 
nfc«»© BSMSS-r- * fct&tfi L fc 7 * K*fi£* 

^wa»c^ yr-^xfti/upi Dta— y i 

D f C*f JStt 5 ft fc 7 -< K x- * fc*f LT/ n v *s a 
[0 3 3 8] t+a'JfYf'y/OfilWli, 3.-' iff* 

ytm^, a.— <ffcJ:?)}g^nrv^-9--ex7a 30 
D, a-*f I D£ftj£-f ^-r-^Kr-^fc 

I) r Y 9 1 <y 7rt<D IW- e 7 7 n / ^ ^SHStf 
(Cfett $ tlfc/ n -y f a ffl fcJt«* 5 „ »m / n -y a fig 

[0 3 3 9] HWplJ-eti, RAMSlf-^D, I*— k! 
X^n/W^I D : 5 6 7 8, a—»f I D : 6 7 3 7CD 

7 k t- $ a-jfv * t /\ y *> a mm m £ ft, -t 

+ aUf-^?--y7rtCD#j£^3^-tr77n/U£" (S 40 

p) ta^«rtfc«nM*nfc*ffSt574— ;i/F, tfc 

*>^, ■9--ex7a/U^'I D : 5 6 7 8, a— 7 I ' 
D : 6 7 3 7£>/vy^a{1 :2 9 0 a ttiMt 3 £ tic 

[0 3 4 0] (5) /vyS/;itetf-8cL;fci§£l±, -& 

trct^^aa^a-ifr/UXffliigptc^t, - 
S^Anf^ti^^ofcl^tix^-^-y-b-^a— tfr 

/UXf|5lJfflg|5(C^i-r§o (6) Wa'Jf-ff 

•y T'OfflWSPti, RttBUMFfr ^yf v E ft 
3770y~>3> I D, RttllHM (AC) S"J 50 
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3» 2 5fc, u y r y 7 AfflSB* a— 9Hc J: 9 A 

ftsftfca— *f i d, ex7n/w*n d<d&t- 

%\.Tz.TW>r-l'-ay\ D, «ttliEBH# (AC) yj 
7/l/#*f> a—if I DfiD^T-^KWJS-rsnvr^y 
fijffl MftBif- * a— tf r> U XMW&fr h Sfi 

u r a Micm.fflLrc®wmm7T'C)i<Kmuffifr-e& 

[0 3 4 1] 3yxy'y50Jffl®»sar-*tfSgSft 
rv^^dir^ffll^-rsk, (7) r3yf-y70fiJffl[H 

«sar-**jieaEw* (ao«o*u ra 

MfcSMbfc0i(Sa7r^7Wcigto^t, (8) 
far- * Kg^ < ff It *m >y -> a ffifcff* L T, ( 9 ) 
•t + a u f f - y T'rt OWJSf 5 ex 7n/ w ^ 
(S P) gai1B«rtk:«iW«nfcmrS7-r-;l/KK 

♦sttts. do) mummmTi^ m&mmgin 

•Vr/VX^flU (ID a-lf^/WXti, SfH 

[0 3 4 2] 04 OOmXit, y—\?7>7°V'U?fr<b 
SMb/cBttM* (AC) tt, 
77Uy—>3 y I D : 0 0 0 1 
SttOT» (AC) S/UT/P: 13 4 5 
nyf-y7fiJffl$iJKlHl^ : 5 
©#f-?«?n, a— tfATJx-^tt, 
a-lf I D : 6 7 3 7 
U— ex7D/W^l D : 5 6 7 8 

[0 3 4 3] -tr+aUr^f--y7©SJ»ti, <in5.co 
f-^fc^tS n yr>yfijfflli»ei!r-*^ R A 

^^aE-TSo 04 0(c^t«±iS»S CrtR AMOr- 
^tfifcli, If-ex^P-'V^I D : 5 6 7 8, a— 9 1 ' 
I D : 6 7 3 TKftfctZ^yTyvWmmWMWr- 
$ t UT> 77U > a V I D : 0 0 0 1 % StttlW 
* (AC) S/UT/P: 1 3 4 5fcttJSf 

[0 3 4 4] fct, ^0-9— e^^P/W^65WB 

LfcHttiP^»{cWjs-r§nyf-y7^ijffl[H]^ i gar- 

^«r-9--ex7P/W^l D : 5 6 7 8, a— *f I D : 

6 7 3 TKKfcirzriyT-yvmmmWMWf-ztL 
tc^-rs crtR AMof-^tic 77'jy-y3yi 

D : 0 0 0 K Ittlffit (AC) y U 7;b : 13 4 5 

[0 3 4 5] ^-ex7D/W^I D : 5 6 7 

8, a— If I D : 6 7 3 7fcftJS-f ^^'-A'Kt-* 
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©/N«y>aW8 7 3 1 7-&<7 sosTiaos pta 
WD/vyS/a{( : 8 7 3 1 #H8Hi!fc bTf&tflSns 

[0 3 4 6] u>7-yy<D$lRffifcits ccD^yf-yy 

telTtVtyhLX, 5-+4->3->2-*l->0i:t3 
r- * MBrtf^fTS n* i: t H§tt - * fcSoV 

3 c ztDayfyvmKWBmizo^Tli., %. 

xEt§<= 

[0 3 4 7] ^-£x7P/W£>5§SiL/iJl 
ttll^S^r^U^-^ay I D, HttfUiS (AC) 

^9 7;i^i^-©r-2#t"ric, a-ff/ux^f. 

■9— VfX^n/W^l D, a— *f I D<D7-f— H'FOn 

[0 3 4 8] ■9--lfX^P/W^6S1HUfcJH 

SEW# (AC) 5"J7MlftSf-*Wfc, 
Hfr/WX^SfSU R AMfcSilL7cia» i ga7 7' 
^l/OWEtStf-ex^nM^I D, 3.-9*1 DO 
7^-;P FO3yx77fyffl0i&f 37-* t LX&B 

yy-yy<vwc%mm^m£?zmmmm~e&z£ 
if- * (omumm. ^ v s/ a fiiHfrJ&afc^rt s . 

[0 3 4 9] 14 SSf^T^^ma'Jf 

0^War-^'D-i'>#-hffia7n-^tc &X7 

[0 3 5 0] £ t\ X7-y7s 2 4 l fcfei^T, 

2{C*3V^T, -9— VfX^P/W^I D, 3— 9'IDic8 40 
■3 v > T ® 5£ £ n 5 7 - ; 1/ F r - 2 £ < ' > >v -> * f I 
£1SfflU WtfJ'vyi/affifc, WaUf^'y^ 

* 9 rt ©•»)■- e x TP / w ^nsMwifc *&wt #<o^ ? 
s^aiit-a-rsjwf^wff (s 2 4 3) ts. -a 

(Dttcosaa^^±i"i>o 

[0 3 5 l] /N-yi'aW-^U ^gM^U^SSt* 

X7-y7s 2 4 4tcJt», StttPJi* CtftSE^F 50 
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*) *^77Uy-^3 V I D, fiJffl^JffiH^ Sttll 
iWS/UT/WWSWOfflfo XT77S24 5 

ft^V^Ts 3-1f7VWXfff[J£PgPfr5>§f8U RAMtc 

mm Lrc^m^myr^Mc, mmmm^m^ntc 
itDtm-vT^vr-isayi DomwgmT—ztfi 

[0 3 5 2] X7-y7S 2 4 6T\ ISMD779 7-~> 
a y i D©0Stfgr-*©gStffci/'>i: ! PJ£Sft;fc« 
•a-a, Xf7 7*S 2 4 7CJi^ «ttI£HJ3#^oT7 
79 y-i/a y I D : n n n n, JSttSEW* (AC) i/ 
07)1 mmmnu fUfflRTt^lHlSi: LT, g^LfcStt 

[0 3 5 3] -73, 2 4 6K43VTs Bl-ffl 

779^-^3 7 I D00»W!!r-*©S8tfS®Sf 
^fcW^^nfc^tt, XT77S25 1 
fc, HtttiE0^»^P»^#LfeJSttSEW» (AC) ->97 
tl t -Wit % 0»ff Sr - ^^RAMlcfflL fc 0»W 

a7 7^;v^s@^^T-s^^s^ ; &f | J^t, sssf* 
-efcsj§£«, p-©HttfiHH«fc»-r§i«saa-e^ 

5 i:¥iJ^bT, »ffe*7*-^SSti^fr*-f iaa*»7 
t5. -7:> MttKifl»3ft»6WiUfcHtt»iWI (A 
C ) i/V7fl>£ -St S PRBSr - ^RAM (c®ffl 

tt, 7r-y7S 2 4 7tcl^ SttOT«(c^oT77 
Vr-i/ayi D: nnnn, IttlSfll (AC) ->9 

[0354] XT77S 2 4 7£feV>T, IttaP^t^ 
a£S7 7-i';Wi:«#j&$nsi^ xf77S2 4 8t 

^/A-y i/^mmmzft, mrrftw v 

f-j?*y-?\H<Dtt&?Z>y-VXyu/U? (SP) 0 

$P>(c, X7-y7S 2 4 9fcfci^T, MffLfcIsl^fa 
7 7-OMcS^Tfl.3M * 9 WJx.«Vn- KrV X 

?) tcts«fl$nfti5i»wa77^;i'©Mir*^T*n 
[o 355] mwm^mm^ntc^yy-yy 

f#$t?<0$Q.a£El4 2O>'-7yX0fC^oT^t 

[0 3 5 6] H4 2t^t^a^— y^Xli, 
L7c03 4, 03 5, 03 6©ffl.a^-'7>Xi:^ 
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£ n-Hfr7 W X tc fcnt 5 Saa*^ L T & D , £fr 5 a 
/WXflJffllgB (±fiV7 h-7x7) , &J:lf : tr-t"X7 
[0 3 5 7] 04 2fC^-f»F\ S±S (a) t±, Jg 

^ i d ( b ) I*, mmwwtf-t** ?v 

Kfett 5 UttiJEiSfr 6 H'X 7 D / V # I D 

nm&fiU cne. (a) , (b) 

ttBfci£i;T«RWfc*ffrS. (a) , (b) <D&«1 

at±, 034 %pm.Lxmm Ltc* y ^ ywmmn 
«^©«Hikra*"p**o , piW3*«*'r*. (a) , 

iDtimmznzt, 042 (c) tc^tjaa, 

[0 3 5 8] (c 1 ) >ft4> a-+rrVWX<DttJl 

[0 3 5 9] (c 2) ■fe^a'J'r^y^flJSaPtt, a 
— tfrVUX$iJ«^?>(DHttsIB^* (AC) ilfflg* 

S«, 0IJ^(f5t{cUi^Lfc02O<O5aa7D-i:|B|«« 30 

■c, « i yf^7 7 , oas» stM* (a 
o rt»Ac unwmmmm^mt'^x 
tzftfflmmmfrz, ±mcm?xmmrMmz'n 
tt\>\ ii-hmm (ca) (DmiLTctimMmmv 

[0360] ( c 3 ) m&m&otomc «t t) , jBttn 

5 6 ic, t+aijf^^9 T^JfflfflHi, ( c 4 ) SttfiE 
H^rttc^^n^ai^ffcnyxy^a : [SC. St 
o p u b. S P. K (K c) ] *m*)tiiLX, -9— £X 

7 , n/w^Bafg«t*siWi*nfe s p*fj£x h u-v® 

ffi»:SC. Stopri. SP. KSrilfflL-T^ft 

ftiafcHfrU uyy-yvm.: Kc*Kt#-rSo nyf 
«l^7Ufcci:«wsirr*. 50 
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[0 3 6 1] (c 5) xicz.—VT'Uxmwmt, m 
mLrzxy7-yvmzmmLxm%t<m%iteyT 

yy [Kc (Content)] -tffV'H'xrtQ 
(P*J£^-FrVX<7) , £3Wi-fc*a'Jr 

frztmirz* mwbrc^mt^yf-yy^ 

(c7) a— ifrVUXte, n>xy7W#t§ 0 C 

tob<Dmmtim7t2>t, (c8)t*aUf^7y 

m : K c, fcitf3>fy'7 (Content) %56S 

[0362] cn^ojaafctoT, stttra« (A 
$mxh^>^m<0s uyfy^m' Kcmau 

[0 3 6 3] ftfc\ ±lB*^JT'tt> ^PJWf^^ 
ilffl b, 3>xyy«©BS^{kt S PMJES7 h 
mm. : S C. Stopub. S P. K«rfflv\ 

vmommc s pwjsx h u-^msi : s c sto 

pr i. SP. K*J8^fc*SfcLfctf, tt)iSl7?S* 

t4s nyry^^tOBg^fL ^{k<D)K^tOMc S P 
*fjtS^M/-^« : SC. Sto. SP. K 

SI) : SC. Sto. SP. K(4, «a'Jfi'?-77' 

© * * U «*t)S-r 5 -9"- id' X 7 d / U 9Wt*- \£ X 1° a 
[0 3 6 4] ftfc\ 9--^x7n/U^>5a-+frV^ 
C : Attribute Certificate) <D&MBWi£. LX&, a 

lXV7'XZ7jJm%lZtSfoX^5^-*ffc1tLX, V 
-\Z7.y°utU#frb~yimz.Wm?Z>^t>$>Z>y°v*y 

a momm cr? ~y * s*f m <o t n<omm t oj^-e 

^*^46i«a— lf|^ltOS14«EW* (AC) 

xnmt&zticftZc 

[0 3 6 5] 04 3, 04 4^#MLT, fOfflHI 
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f-y-mofttt***) (0>Rfcf^-Ff^X7) icfem 
f 8 U iff- £ <D/n «y i/ a fficD&^-t:^ a 'Jf^ff 

BUS, 0 4 4tt&#0jg«£fett3[l]SreaT-*0M 

CO 3 6 6] SSJfcgU 3*#BILT, 37r77#Jffl 

[0 3 6 7] (1) ^aUrY^7°©$iJSmt, & 

* 7 9 -f yffl mawi® n >fy7t-gsi: $ 
^— ~> 3 y i d, SttfPM (AC) yvrhm, n 

^T^y?iJffl«iJ|5||Hl»<D*r-^*^-r5o £ 
nyf-^^tDWAJaa^^-^cj; 0 ATJ^nfca- 20 

f ID, 1t-ex7 , n/W#I DOSf-^ta- *fr 

/ux$tj»&/rLT®f#u cne><D®mLrc77v 
y->ayiD, Rtt&imi (ac) s";7;i>*ft, a 

[0 3 6 8] t*a"Jf-f?y>*0^ ; E , Jfcii, MitfiU 

<fc 3 ex7D/w^stc-9— ex 

[0 3 6 9] H 4 3 fC^ttWeti, JlttSEUBS (AC) 

7-?\)>T-i/ a y\ D : 000 2 
SttlW* (AC) i/U 7)1 : 3 2 7 8 
3yryyfWJH[§|&: l 0 

3— if I D : 6 7 3 7 
■9--tTx7n/^^l D : 5 6 7 8 

[0 3 7 0] ^aUr^yTV^iJiP^ cn?>£0 40 
r - * E WJS-T 5 3 7 r 7 7 f ijffl BSSlf- * tf* * 

u \H<Dttfot 5 -9-- ex 7p/ u tmwm ^ s 
^*ttSE-rs. H4 3{c^rs pwa^Jir-^ (Hfr 

mi) Or— *4>fcfck -tf-exyn/U^I D : 5 6 7 
8, 3— *f I D : 6 7 3 7K3*iS1"*3yf WjpJfflEI 
»WSr-*i:l/T, D : 00 0 

2, HttSEIfi* (AC) S/U771/ : 3 2 7 8fc*ff5*3 

[0 3 7 1 ] (2) -tr^aUr^^-y^irW^ il£D 50 
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ct. 2 etc m&mwmicimznrcfflm®mjLT, 

mmwicimztirc (3) ^mt^yryymnmmt 
aaafc^fr-rs. 

[0 3 7 2] (4) ^SfC, "fe+aUr-C^y^JWfflS 

fi, exyp/w^maMii^ 

mZ^fttZo CCf^tt, 77y^-7a7I D : 0 
0 0 2, SMS* (AC) >"J 7/1/ : 3 2 7 8 EftJS 
■fSx-**©, fiJfflRTffiHISJc (SM) : 7* 6 Kg 

fr-r^iaa^nff-r^o (3) ©w^ftnvr^ 
^^o^kjaat, (4) oa»»i7*-*0a§rft 

a«\ «La#M* (4) *foc (3) 

[0373] 04 4*#jSLT, nja^^r-r 

HZ* * a U f- 4 =f- y 7ft<Dft&* * U (fl»J* F 
*-fe*a Uf^f'v 7rt<D^U tffitttSHttfc L/c 

^oH^war-^^MfrMa^-^^x^^-r 

§ o fefr e. 3— <j"7V w x rt « - t * a y f f - -y 7°$IJfflJ 
gp, a-+fr>WX$iJM (±fi77h7x7) OfflS 
^IT^So 04 4©ffla->-'5ryXfi, tT*fC-fe* 

i:LT> ^cO^tDMa^UTV^o 
[0 3 7 4] 'Jt^7 7^W«, SttSEW 

mm^yy-yy-e&z tmfetz ^ajo^ty ^ 

til- 9 s rvWXMi^flt 5 HDD tc@KV17 
r-OWh*), (l) a-tffWxiWMWcfc^TH 
»SS7 7^;l/»ltlsnHr*2L'Jf^fy^(« 

t'Sott, ss^jin^r^KWJS-rs-y-- ex7 

[0 3 7 5] ^tc, •b+aUr^f-'y7©$iJW±, 
( 2 ) 3-^rV WXftiiJffllg^eSfa LfeEljRSa7 7 
^l/*t4ra'Jf ^ f-y 7*1^30 R A MtJSMU Jglfflr 

t±, -y-ex7p^Y^i d i:3— y 1 Dtwfswts 

•tr^ayr^^-y7©^ ; eurto-y--ex7a^ 
•r^afflJSKtt, -y-ex7n/w^i vt^.— *f 1 

D fC WJSfttt 5 tlfc 7 -f F7*— ^ C J* t V ^ a 

[0 3 7 6] t+a'Jf^f-y^OSIWlt 3— «fr 
/^X^S^flt, R AMfc®BBLfc|5I»WS7 7l'^ 

3— !f»cj;t)j§^$nTv^-y- ex7n/w^ 
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Snfc'vyS'affifcfcJtftl'So Stfi'vyv'att^ tS 

[0 3 7 7] g|cD#jT-«\ RAMjgKlT-*©, 
X7a/W#'I D : 5 6 7 8, a—If I D : 6 7 3 7© 
7 f Ft- * tcS^TM -y $/ a ffitf SHJS tU * 
*aVx>rT'y7'rt0flJfc*Stf-eX7'P/W£' (S 

p) wasBWrtttSiWsnfeWfS-rs^-r-^K, -rtt 10 

it- e^^D/^^I D : 5 6 7 8, a— «f I • 
D : 6 7 3 7©/vy>'3.ffi : 8 7 3 l h)AM?% z tic 

[0 3 7 8] (3) /^S/afttf-RLfclfctt, -» 
Lfct£*fjl*n£a— •ff f /WXE3M3U 

fciMfif&o (4) -b^a'Jf-^^'yyoSiJW 
tt, BttaW«J6f» ^>r> y»W?K:*f** 3 7 7 U 
y-~> 3 yi D, (AO >>U7;V#^ n 

3 yf >^cDi8ASaaB#tca— ific «t D ATJStifca- 
+f I D, ^-ex^n/U^I DO*f-**a- 9r 
/ U X$iJ©a%/r L Tlitf# t , u n 6 L fc 7 7" U 

r-^ayi d, mmmm cao ^jt^mw, a 

a— tf -7/ W U R AMicM^L 
fc 0»WS7 r -f /Wc 7? 35 § frgfrfc&SEf 

[0 3 7 9] H4 4 K^IWfi, (SttSEWS (AC) 
«, 30 
77'jy->'3 V I D : 0 0 0 2 
IttSif (AC) U 7;V : 3 2 7 8 

®&r-*tfiE8Stt, a— tfArtr-*a\ 

a-+f' I D : 6 7 3 7 

+>— t£x7p/W#'I D : 5 6 7 8 

[0 3 8 0] *Z*a.VT4 3-v7<D®mmt, CftS?) 
r- £ lcM(St Snyry y f ijffl @tllf- ^^RA 
MicJgM Lfc@|gflfJl7 7"f;Hclffi»*fS«*^ 40 

V—Z7rfxit%4 9 \ D : 5 6 7 8, a— <f 
I D : 6 7 3 yfcWJiS-rsn^f-vy^ffllHlftSar- 
^tbt v T^Jr-yaVI D : 0 00 2, JBttlEE 
* (AC) ~>U7;l/ : 3 2 7 SCttJS-fSx-^Jtftfft 
U fiJfflBJ^lHl» : 7 fcK£SftT^S„ 

[0 3 8 1 ] (5) i:^ayx^-y7$ij«i, CO 

SttIPJ!«Ei5§i£nfc»@SWT, 
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^ff^LTPyry^cDfiJffl^nJ, tfcfc^ Htt 

SEW«fcffiiW*nfe (6) %m\:=ii/Tvyj&<DQLmt 
[0 3 8 2] (7) fc+aUT-rf-yTWWfiP 

r a m £g m l it mwem.7 T-oimfcT-zv 

5c CCD^ti, 77UT-yay I D : 000 2, JB 
ttSEUHS (AC) *>'J7/l>: 3 2 7 SfcttfS-fSr-* 

[0 3 8 3] t+aiJf^f7 7'$iJMli, 

( 8 ) Efr-r- 2 < frfcfc^ >y f a fi^ffS L 
T, (9) •b*i<J7^>y7rt©ttJS'f£-9-- £X7 

d/w^ (sp) ffafis«rttteiW«nfeWjiS"rs7-c 

-;I/K(c**W*. 0 4 4 cD^Tii, MffBU©77U^ 
— >ay I D : 0002, gttfPM (AC) S/U7 
;b : 3 2 7 8fc#JS^57-i'-;lT*T-*fc:S-3<>'vy 
i/alii8 7 3 1 -CfcD, M«f»OlRl7>f -71/ K©r- 
^tS^X^-y~>afS«b c 3 5 fcfctK ■9--e > 7.7u 
/W^I D : 5 6 7 8, a— 9*1 D : 6 7 3 7E*tJ^-r 
3 HOSTS© S PSSfc«cD/vyj/afi! : bc35*^ 

[0 3 8 4] do) mmummj^ m.^btc®m 

mW7 7-<)l>i£, a— yT/UXfcfflffifcMisL, a- 

+f f r / vr xmrnrnt. t fe Ei»ia7 r^i^> 

[0 3 8 5] iio.fcdfc, nyryyoflJfllf^Eti, c 
(Dnyfy y spjffl @»mar- 9 ^#n^n, f iJfflS K 

fiJfflMHllft£lx^U^yhLT, 5->4^3-*2^ 

- * cgr^T*? fc fc-^ >y > a mmm nr , sirffl 

■VCD p y r yv% m if nlti i: 4 5 = 
[0 3 8 6] W±, UttSEWSonVr^yflJffi&ttfc 

z£<wm*$kft£LTs ^yTyvMoimz'ttK? 

[0 3 8 7] [77^U-F11] BttlEWSKli, 
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[0 3 8 8] Tyf^u-vmrnai., Rf*«£«, &L 

MIot, 5@$oTV>T> 1 OtEKCtf^to 100 
(2) liJfflffiHMIS^aVT^y^Jffl^fti: LtaH^L 

fc^iffiKimiosiffljHiHiiafitSo 0y*& laraa 
Pi^wi^s-f^o ffinMR«@adM6(cxst 

So lH»MIS*H^Wt)tcSM-r5. ffllMWIH*»rMH 
DfcggfSo 

(4) 7;l^Aft7>y7?V-F 
-5icD7;W^fb$nfcnyf yyf-^, 0J*.fcf l ft 

©CD&§WiDVD§£teiW3ft;fc&» (n) ©ay 20 
f>7 l ~n, &§Wift5fr©y U-X^nftny 

5 fcttJ&* 5 SttlEBW 5 , £a— tf U X U 

yy s t%t>*>, ayy-yvz, 4, 30 
y*»J3l«re-JS (7;l»VM WAftSo 
[0 3 8 9] IttP»tI^<7y7^WKM: 
tt, ±a*Lfc«4fcJB«tf&5. £©7"y7?'U-K$a 
a^tf^-^yxcO«a, #©iIt>T'&£o £1% 
■9— tTX^P/W^ (SP) 

fca— iffWXIcSKsU a-W77 7^>- F* 
aa-J&SWtS. a— «fr/WXtt, a—tfwjggfc 

wm^fe?-* tttic 7-y ?vv- Kg*nv 

•y ^(DfiJMi, -9— £ 7.7a/ W ^i: ©afifcHfr t 
T> 7 <y 7?V- K«iaW*fc-r S«fljg*©JittSEW 

m^-\L7.-fu)U ¥\zmmt % . ex^p/w 

££LfcJittSEi8**ftSEbfc&, a— ?©*§£ 
Lfc7 7 F^a^ftU «ffcSSttSEW*« 

^LWa'jf-ff'y zncmmt % . a-^rv u x 

[0 3 9 0] J-XTn r-y^U-KO^-XkLTffl^ 

s«iiSE^» (ac) fctatg^nrcnyry^fjffl^ff so 
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*>w© 3 m®T*$> z>tM&<D7 v 7?v- FSaatco^ 
t, wck, mm? &o 

(A) ^y^-O-flffllHIBIWIHay^w 

(b) *>7jy-mm®mm3y7-yv 
(O *75-i'y-fijffliHi»M3yr^ 
[0391] (a) *yuy-mmmmmmvtmw 

t (AC) fc^-XtLfcrvTVU-FJUg 

14fEBJl»£^-X i; Ltc7v KffiH^H 4 5© 

v/-^>X0}C^oT^tSo BHSKH:, fcfrSa 
— *f r ^ WXflM*a'Jf^9 T^JflUSB, a— if r 

/wxffl»su (±fuV7h , 7x7) , %>&m-\i7,-7 

[0 3 9 2] 0 4 «±® (a) fi, StttCTtf 

^fCfcttSBttaiEB^^e^^-^xyp/U^ I D$ 
l#« (b) SttIIHM^-tr+a';r^f--y7 , cO 
ASM*';, t4Ma- tfr^-rxfiJffligp*»coSJffli 

*ttM*^P,cDD— exyn/u^" I DM#$aa%^ 
U StiS (a) , (b) «ilttSEW*©ft«iffiaK:*S 
UTS^W^^fT'TSo (c) ©fflSKiB&SL (d) 

[0 3 9 3] S-f, (a) Oft9*»5KlB'r*. (a 
l) a— ifx/WX^gpti, 7v7>?\s-YWm%. 

-rso (a 2) ttzLvm-vfmwmt. 
icteMmfrvm&umww u x b «a— w 

XSOWicUBtlb, (a 3) a-tf7WX-CttttJ!<D 
77">1fE«}:?)UXh*^tSo (a4)a-+f'tig 

,^$nfc u x h^e.7 >y 7^p- mmtt&vmftMW 

m (AC) ^^t, M^ttlU^^-b^aUr^f-'y 

^u&mcmmt s 0 (as) w a 'jf^7 ttwip 

Ta— tfr/WX$i|SSgP(ctH7 t jL, (a 6) a-ff^ 
-fXT'{i^S«7*7«7-!ftcj;tJJi14aEW»*a^t, II 
14tEW*tSttr - Z^m-VX'/v'W imftft ( s 

p i d) w#-rso 

[0 3 9 4] H1tSE^»aWay7^>y7©ftgM 
* U > t%t>% a— If r / W X»gW&<DfOT-e 7 ^ 

■bxpjffift^tucftiwsnTt^ii^a, (b) ©ja 

Si:S:*o (bl) a-^rVWX$iJffllgpa, 7>y7^ 
U- K«iilW*©lttSEW«©*3S«^ L, ( b 2 ) 
a— tfrVUX'C r 1i^S©7*7 , >-9 1 'tc J; *) M^ntc A 
C 'J X h*^ 7 y K jaaW*©JH4SEW* ( A 
C) ^m^L, 6t^ttJLTiittliE0i?»%^U> (b 
4 ) «14OT*fe|ftx-^pp©9— tTXTP/W ^OttBU 

? (sp id) w#-TSo 
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[0 3 9 5] ±IB (a) , (b) WftltiWWmic J: 
D) ti, ^-ex7n/W2"Waii«fr<^ ffiSSSEK 

rUVmW (S P ID) fcajSTS'tt^-FA* 
J; t) N +r-£X7P/W^SaiI$'\©7^-trX£ll 
frU 04 5© (c 1) fo^Hr+aU-f-i'^yT't-y- 10 

[0 3 9 6] COiSIIillti, 7*c{c|KB^Lfcia 1 6 
OTLS 1. Oj&SSfca, *©ffi©£j£, 0!l*.fcf&IJfl 
»7?SK<J:SfflSBSES!iaii: LT^tf $n§ 0 £©*@S 
BSBBlSefc^Ttt, ^©^MPM©^!!*^ 

n, iaifciSCT/w-haaEs (ca) txn^mmm 

l(Kses) ^ttWt§o ffl5BSE^fi!ui-r*i:, & 
EC, 04 5 (d) K^fjaa, *&fr-fc7v7VU-F 20 

[0 3 9 7] (d 1) a— a— tfr>^XOj« 
©^7«>1flc«l:t)a^SnfcJBttlEW»<0flllS1»* (=i 

7?v-F£ft«u 

»«J[si©^h Gift) so 
wihhwh-** yvj ymmm^mm 

[0 3 9 8] (d2) •b^a.VT-^f-v'^Pmmt. 3 

— >fT'Uxmwm^(DmmtW9 (ao 7<y7** 

ft) ©wig, 7*- v-yhsi^ i«rs»^tn 
§o s^fcSEj&stt, »j*tf^KgiwufeH2 o©saa 40 

[0 3 9 9] &gfcj£CT-te*a I) 7-1-^7 

©»j»gi5tt, m&mwm cao a© a c 

immmm (ao ©^f#©M«a*^fit^T^5 
ittiiEH^t (ac) (Dm^fD'&mmmm 
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ti, 8»«±ffifcji!ioTj«R«a«iE*ffav\ ;v-b 
f8tB6 (CA) ©«fTLfe^M«liEW*©«iiiE*T?^fT 

[0 4 0 0] ( d 3 ) Bttfffl»©t» ± t) , Httffi 
0£#©$S(& L©f iJS^fi 5 ft 3 2: , Wa'Jf^7 
7©$JtPg|5&> ^-l£X7a/V^CftLT7'y7$ r b 

7 v 77 \y- mm m tt&immzo 7 ? 77 1> 

- vmmMtDm'mwwiat, mm&ftt trtyy 

/W^Dflfttf 58HB»: S P. S t o. KTRg^tS 

tiituvTyyU<DT~}>. [sp. st 

o. k (k c) ] tftettsnr^So 

[0 4 0 1] (d 4) ^aUr^7y7fr5JlttsiE0fl 

»©E3feW81S£ft&^ (d 5) a— «ftJ:!)«S 
Sftfc7 -y 7?V- K*ft««fc*3 < 7 -y 7?V- F 

[0 4 0 2] 7v^yU-KJBttiElfi»4J««Wltt, ^ 
— tf ^ ^K>n^ntcn yf y >yf Offl^ff *iBS L/c»f 

feftjutSEWs -r^^-s-t^a 'jf^f^ 7>e>gf§ 
^T-rsjaafcLT^tf-rsc c©is, if/ct 

SSfr-T S 7 y K*ttlEW»*fctt, 7 y 

- F©^-X^^ofcSttf£B^»©^U 7;l/*-&ty«JS 

[0 4 0 3] fcfe, 7>y7y^-F©^«tt> tuaUfc 
J: 5 E, 

t«»^«, ?iJffl^PS@a ; &l&lfitfc7-y 7^U- FS 

ttwi»%£5rr3o Rv^o^BSf 

a, 3yTyvmm0k®-*m^mtLt:7v7?\/- 

[0404] mmmoymm, so^nt^y^ymm 

mVEMfltt 7 7 7^U- FSttaEWStIS 
it^nyfyylli, 7i©gttIiE0i?«i:[Rl«> ^-tf 
xyn/V^M^T-Pi^ftLfcnyry^Si [S 
P. S t o. K (K c) ] tLX®Mt%t)\ *7yJ 
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ya/u^wmmmcmmsnrc s pwjsx f u-isw 

ffit: SC. Stopri. S P. KfcftjtSt-S&IJfljl 

T-Bg^ft Lfc 3 y-f^y». T&fc-s, [sc. sto 

pub. S P. K (K c) ] ZffititZo 

[0 4 0 5] &4b\ *77o(>9mtr&m&"e$>r> 
-exyn/w^mpais«K:i»w«nfes pwjsxfu 

LTV>^:V^-a-{4> 04 5(DX"fyf (d 3) O-tr^a 
jMWic, KTSPMXM/-^i («ffiH) 

[0 4 0 6] -9— \*X-?u;U?l*. 7yf9V-YM 

[0 4 0 7] (d6) tta'Jf^'y/aWlt -9" 
- 1 X 7n/ ^ ^ 6 <D7 y 19\r- F BttSEHB* ( A 

ttSEfflgiKtt, «tt«tifc«llfiflHi (PVr^yfiJfflsfe 
ft) !WB®feft4:-*r**»©«a8% 7*-vyh» 

$fcfcgtlpjLfcH2 0cQM7P-£H*i<D^-^> / X{C 
!7E>SiJiSiaH±* JlttSEHW (AC) rtcDAC{£*## 30 

[0 4 0 8] ( d 7 ) mmmm^mmc x o , HttSE 

^■©MffllgPfi, 1t-l£x7P/Wf;:*fbT7-y7?V 

- FllttSn*SfflWB«9H8 U ( d 8 ) 7 -y 7?V 

- FSftJIBWS:^ »J icfemtZo 

[0 4 0 9] $?>lc, -b^aUr^f--y7 p ^SiJ®St5«, 
7 -y 7?V- KJH4HW*3b^77Y >«»T;";&3 40 

r-#<o^y#-hffiS©SMltt, ftfc03 7~04 l 

[0 4 10] eLhoJffiltiO* p-~ ff/KXtt, f 
TicMt-r 5B14|EW*t«:S^^T#f feft7 y 7^ U- 
FBftJIBW^fU 7>y^U-HSttSEWWcfi£ 50 
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[0411] (b) *y^y-fUffllH]&ffllSJittiE$ 

t (AC) *^-Xtbfc7y^U-H«yi 

y^ >$aa?& t) , 5pjffl@i»wi8*^snfcjattE 

t&mmik^-* t LTc7 >y 7?V- KJfflHfcE 46© 
^-y^XHtc^oTSiWrSc H4 6fcti, 
-ff/WXrtfDt+a Ux-f f-7 7»g|5, a—Iff* 
(±{uV7F7x7) , exT" 

[0 4 1 2] 0 4 6T?fi, *±S (a) tt, JBtttEW* 

tfa&gu (b) it, m&M.wm ,i **3.VTj?y7(D 

T?7^-bxniffift^ ; eyic^ii«)$tiT^5^ict5tts 
Bttiratfr t?x7p/w i D^ifsaa*^ 

[0413] fflsiBSEftfiKiSiojeia^eaiiwrSo 

(d 1) P.— 9Hi> p.— *frVWXcDMB£D77 7- , f^ 

£ft) £«BU S14SE^»<07y7^P-F3ifflS* 
i: , 7 >y 7 y U- F^ff -fe * a 'J r w f - v 7tc W L T 
W*rf 5„ COiWfc43»*7«y^U- K«ia*f*oJi 

ttaEW«u:iBSsnfc3yf->"yfliffl*fttt, 

y 0»JPl-es t) , a— tf om%.? Z 7 >y 7^" U- K* 

* y?y y®mim^mmm^m 

[0 4 14] (d2) ■tZ-a.Vf-jT-y-fmWmZ, a 

— *?7 : 'Uxfflffl®frt><Dm&umm (ao 7-y7^~ 
ix-Fjiffls^^fs-r^.^, jittSEw*o«iiE5aa* 

ff) <d«e, 7*-77 F5iis> a*ttu«ia*^sn 
§ 0 g«^SB!aatt> w*tf*KiiiBtfeH2 ooii 
yu-tmm<Di'->ry7,icii£-oxmft-$ft%o se. 

tc, ^StcjSUT-tr*a , ;r-r^'y7C)$iW^, Stt 
liEBH* (AC) rt<DAC««f#©^8taEW»> $5 

( c a ) ornvi l rc&fflfmwm(Dtmt x°nm % £ 
to4i5] (d 3) mwrnnm.^^. mm. 
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8 5 3 2 1 



- Ymmmmmvm*, a— 9* k «t o jgss n/c 

7 -y K*fMMB2: tlcSHtr*. 7 -y 

^oGWtrsfiHfti : s p. s t o. K-r-Hi^fb^n 

fcn^yyaor-*, •ffcfcS, [SP. Sto. 
K (Kc) ] tft&WStttVSo 10 
[0 4 16] (d4) -b+aUr^^-y^BlttsiES^ 

^ f 5 ^P*HtfMS, * «k J t©±ffi^BB »SEW«*a 
«Wlc«ttE , r*ci:jWaPSbi/''o ft*, coBfcfcSEtf 
^©Jf^-fefeSo cnS^iBaa^J: 1 ?, HttSERH 

m<oi£^mmmsn^t, us) a~*f thorns 
t titer v mmmzm-i < r ? fpu- f 

[0 4 17] 7y^b-KJBttSEW»*fiK«iS!l4, a 20 

-+ftc «t d ms^n/cn yf > vnmm* mm Ltcm 
LfcRttSMMI tm^i/v Tiv^^-om'&mm 

*ffi7?ZWmtLTnfttZo ft*, C©BS, fffcic 
[0 4 18] ft*, 7y7?U-K©!88i«, fliiELfc 

fUfflMffiiaaoSM cmsctsira) 30 

jcy^j ymwm-^m.^ <o ^sm. 

mmmc Litrviv y- vm'mmm^ 

*f&tt Litry/if y- mmmm*%.i&t % . 

[0 4 19] *y9-fy@»WHfcUT*JffliMffi0ft* 

B£S h im -9"- JfZ^o/ W ^OlBffi»T*B|^{bLfc 
nyfy7l [S P. Sto. K (K c) ] fcLTteiW 

gE*5*§£tt, 7-y7°^V-KJStt!iEa^«ic«, tc© 

^ , y ex^n/ w ^a®«tetstts tifc s p 

#J&X h U-^#fffi» :SC. Stopri. SP. K 

kftfc~?z&fflmx>^{tLrcay7-yvm, tat> 

[SC. S t opub. SP. K (Kc) ] Srf&ffl 

f §□ so 



[0420] ft*, tyvsoymtt 

MtZo ft*, •9--t:x^ , n/U^ii©«ji»*«W 

UTV^ftV^Ji-a-^, Bl4 6©Xf-'y7 P (d 3) CO-tr^a 

mimics imxs p#jsxhv-ji *ss 

[0 4 2 1] -9"- ex^D/W^ti, 7-y7 P ^U-KH 

[0 4 2 2] (d6) -b+aUr^^-yyftiiWli, ^ 
-\£Z7°u/U jffr t><D7y7?y- FJSttSEW* ( A 

ff) ^js^^ffk-a-rs^owas^ 7t-v7« 
9ticmw Ltz. m 2 o <Dmmy p- 1 iri«© v'-^ r >x k 

^■y^OMWIi H1«l» (AC) W^ACffiff# 

*ff43Jii:3W?*U\ ft*, cojWMjaW^O 

[0 4 2 3] ( d 7 ) SttfIB^»cD^!iEtc «fc 0 , SttSE 
0)1«oai Hft b © WJEjWI en^i:, Wa'Jf^7 
y^SiJMMi, ^-^X7n;U^cWLT7-y^V 

[0 4 2 4] $e.fc, ■b+aUr-ff-y^'OWWW*, 
7 -y y^U- KSttSEW»3b^77l' >0»iJ|5IT-fe5 

r-^^V^-FJaatOpiffltt, ^{C03 7~H4 1^ 

[0425] ^©saatcto, a— tffvuxte, -r 

mmmm*m% u 7 >y v"? y- Ym®mm&®. 
o /if offl^ff icLtctf-Dfc^yTy v mmimfet* 

\°o 426] (o *7?4y-mm®mmm&w® 
m (ac) t tfc7 7 FM 
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&UW9*^-X t Ltc7 v 7"7>- Y%Wm 4 7 CD 
i/->ryxmfcUiTMWt&c Mi 7 Kit, fefr&a 
— >f WXrt©t*a 'Jf^f7 T'fflffl^ a— if r 
/WXf&JflpgP (±&V7F7x7) s fcitftf-lfXT' 

[0 4 2 7] 0 4 7-Ctt, B_h8 (a) H\ «tt!PJ3# 
tf-fe* a U r f 7 -y 7© rt SB * * U S tlX ^ & t§ 
^fcttSJiftSEWfr^tf-exTn/^^i D$ 

®mm, (b) {±, JRttiEWS^'fe+aU'r-ff-y^© 

asm* -rat^a.— tf7*/w^npj»ai5¥Sfe<o*'jfl io 

?7**X^fc**y£tefflSnT^3lS£fcfcttS 
SttfiEHWfr S>®7- trX7°n/tY£* I D8tf#ffla£^ 
U (c) tt^i'JTYf'vT't^-lfxyn;^^ 

[0 4 2 8] fflSKieMji^wi^s^-r^o 

(d 1) a— *f(i, a-77V^X0ttjlcD777inc 
±0a*«nfcllttlEifl»O«l81l!« (3>7:/7fiJffl 
*ft) *«BU MttSEW*07-y7^U-K3ifflS* 

7 7 K*ff*t+ a 'J f ^ f '^KSLT 20 

tii7J73o u^y{c*3^§7-y7°^U-KSaSW^« 

yHHWWRT?* 0 , a— tf 5 7 -y 77 U- 

fftt, mm. 

* 7 5 -r > @»siji®-»mv ^ o 'nsh 

3©*ftT?**. 

[0 4 2 9] (d 2) WaUf^7^lJ« a 30 
-7rVUXfc»fr&cDBttiP)!« (AC) 7v7? 

ft) ostgx 7*-wn»B, i^itMiA'tin 
So mzmmmte, mz.nmcmmLrm zooms. 

§H« (AC) rtOACfi^r#©^HI«SEm £5 

(ca) (DffijLrc&mmmnvtkuzxnfftzz 40 
[0430] ( d 3 ) mmmwv&mfc «t d * iftii 

TVXMWSPli* ■9--t£X7*n/vr*fc»l/t7y7Vl' 

7 7 77" U- K&ftfitffl fc fc tSHW So 7 >y TVb 
- FMttiiO/ittHlBH*^ fUffl^fti: LT*7^ 
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OWaUf^f-y id 1 X 7°a / W ^gflgtffc: 

mmsntc s pwjsx h u-s^hmi : s c. stop 
ri. sp. Kicm-t^mmx^mtLtc^yTy 

7i, 7&fc>^ [SC. S t o p u b. S P. K (K 
c) ] tfl&iWSttT^S. 

[0 4 3 1] (d4) WaUfi'f'yT'^f.Ittli 

m^i9Lk^~\£xfu/u mmmw<om%> 

#.m9BM&%ft?Zo COGS, BttaE^»fC'J> 
7 7 5 ^5B»fflEW», & «k tf *<D±ffi&IJfl»tiEl!H**B 

*©£Stttf5tK£ftSfc, (d 5) a— iftciOJg^ 

$nrc77 77V- K*fMH mcm-3< 7 v 7tv- f 
[0432] 7v7?v-Ym&wm^wm\t. 3. 

— If K ± 0 »£^f nfe n >f > 7? iJffl*ft£!Bfi L7cfr 

LfcSftiPM k gft * ->'J 7;V# WtogftliEHIW 

«frtS7-y 7"^U- F*ttM»*fc(i, 7«y 

- K©^-XkftofeJittlE^«<0^y 7^^t?«K 

r-^^^-rso 

[0 4 3 3] &*5, 7y7*^U-K©Jg««, HUxEtfc 

fijfflfiJPSEIs^D^H (0»if in) 
*77^>ia8*Jis-»flBHSiJiS'\SH 

m»*»rfe KBIS t fe 7 >y 77" U- FStttEa^»^4fiSc 
[0 4 3 4] *75W y@»IWIfii:UT|iJffl«!l8@a* 



h^s k +»-- ex 7*n / w ^ans«K*iw« nfc 

S P^JSX h l<-i?W&m :SC. Stopri. S 
P. Klcm-fS&MHT'Bl^ffcLfcsy-f >7«, 7 
^t>■&^ [SC. Stopub. SP. K (K c) ] t 

Lx%mt%>ii\ mmmm^m, tzititxvj'Cv® 

7 -y 77"U- KRffl»fl»K««lW* 3 >f>7»i> 

if- trx7n/ u ?<D®mmxv§mt htc^yr-yvm. 

[S P. S t o. K (K c) ] £T3o 

[0 4 3 5] *79-f >mai:75^T^o 

t, &?mttxim<s nmmttvmmmix 
tt7So ftfe, -9— wyo/vwcoieMisfi* 
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LtVfc^i§&«, H4 7<DXf>^ (d3) CD-fe+a 

BWK, ff«SPMXM/->i (#&«) 
[0 4 3 6] -9--ex7n/^^fi, T-y^^V-KB 
[0 4 3 7] (d6) -b^aUr^f-y7 P SiJMi, *f 

-\£x-7tvu?frt><D7v77u-mmmw (a io 

f7^iW!i, SttSEW* (AC) fi<DAC{£&# 
[0 4 3 8] ( d 7 ) Stt|EW»©«SEC «t 0 , JBttSE 

- KHttiEimmw&ssfib, (d 8) r v ivx* 

- mmmm&t*: v torn**. 

[0 4 3 9] ■b+aU-fwf-yyoWWaPf^ 
7 -y KHttSEK»A^77-f 

r-£^y*°-hfflS©!¥ffl^ 5fcfcBI3 7~04 1 % 30 

[0 4 4 0] fiU:0*BI£J:D. a-ifr/WXtt, t 
THC^-T5JittaEW»KS^^Tirfc*7«yy^l^- 

o fcfijffl*ft fc Lrci^-ofcuyy-yy of ijffl ^b[^ £ a 

So 

[0 4 4 1 ] (D) 7;W^»AS7-y7^V-F 40 
l^©CDfe5V^±DVDHfCl»i|fi«nrca» (n) 

-ctb <o , mxffifrxyTyyictifotzmmimw 1 ~ 

^fcjfjjvr § c i: ic «t 0 , 7;W ^*mfi8f Sfflony 
fyy, -fftt)^, 3yf^2, 4, 6~n(D3>f 
yy£fiJ§l«&T'HS (7;WS20 WA-r^^afiLfc 50 
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7 >y KfifflfcO^T, 0 4 8 LTiJHIJ-f 

[0 4 4 2] 04 8(i, fe^5a- ♦f-r/^XftO-b* 

T^4. Wl±m (a) 14, »»*a'Jf^ 
W^frt><DV-\£Z.-7ti/W?l DBtf#$&S, (b) 

tt%^-*TT>u mmw$&<owm-z 7 * -b 7. rT*6 

©t-ayn/Wy'I DEifS&SfcjSU (c) li-b 
ta'Jf-ff-yy'W-eXy'n/W ^offlSSSEJaa 

[0443] tmmmmiLW:<Dmmfrzmw?%o 

(d l) n-im, a-+PrVVX©ttg07*57-»f{c 

j: DS^snfcjsitiEWSotiiaisfH (3>f->yfUffl 

*ft) *«SU SttSEii»<07<y7 , ?V-KjIfflg# 
f:, 7 y F*ft*-fe* a 'J f-* f-y 7fc*t l/C 

m^-r^ 0 u«c3bnt37'y 7°?v- Kjaa*f«<DJi 
2ti%7)\"'U±*mi£?Z>— ffi<D3yf-yyizltii&t% 

7>i"%L>*Mi£t%>tik<D-&uy7-yy<DmA 
7>wu**Mj&*zik<D£3>Tyy<Dmx 

[0 4 4 4] (d2) -fe+aU f^f-yTiWlPSHk 3- 

-^7>umm®frb<om l &mm (ao 7<y7°?' 

ft) ofitg, yt-^yvmu, mztituwrntfi'Szti 
So g^^SEsaa^, fi»j^.tf$fe»<:^t7c02 oosaa 

tc> i 5g^j55UT-t+a , Jr^f->y7 0 o3;iWt4, «ft 
HiEH^« (AC) rt©ACffi«p#O^0fiaiIW«, 

(C A) ©58ff Lfci!HWttlWlOt«E*T?*ffr*J: 

[0 4 4 5] ( d 3 ) «ft!iES^»cD^IiE(c <t D , BftJiE 
0^#oaijHa L O JpJS t>m 5 n 5 > -fe * a U r -c f - -y 
7°©3!iJ»4, D--exyu/W^cWLT7'y7°^> 
- KjaSW*<DJlttiEW*%, a— tffc<t D«SB*tifc 
7'y7 , ^I^-F*ft'[f$S^tt^^1-§ 0 

[0 4 4 6] (d4) •b^aUr^^y^e.JBttaEW 

ttSEjaas^fr-rs. c©is, «ftSE^»{cy^ 
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•©mattjWWBsnsfc, (d 5) a-^c^o^ 

2ftfc7<y 7?"U- F&ft1fffifcS^< 7y^U- F 

[0 4 4 7] 7^7^-F«ft|E0£*£j£M±, a 
— 9* ic £ D ft fc n ^7 > 'yfiJffl^ft^fB® L fcfr 

LfcSttfEHB* £Sft 5 > V 7;l/##%if oSttiEW* 
*%fit%®Mt LTHfrfSo ftfc\ <:©I8K Sffct 10 
Wilt ^7 v ffV- FRttKimWlctt, 7 ? T^V 

[0 4 4 8] ft*, 7>y^U-K<Offifil{±, fiMLfc 

©^■f ftfr-pfc t) , 7;I//^*#}fiK1- Sftfiw-SPa >7 
>'y©»AO#a'«, BBAJgSO-SPnyryyfcttfS 
-r§7-y7^U-F»ttIPM^fi)c1-5o Sf^ 7/1/ 20 
/^A*«^-r5ffiO^nyf-y^«0»A©«^{i> 7/V 

- mmmm^m^ 

[0 4 4 9] ft*?, o<0^<DfiJffl*fftt, 

WISt S$tJj)cfc l/Tfe<fcl/\, 3— If t 5 
tt, 0 4 8 0X7y7° (d 1) Kfe^TJISL, (d 
3) cD^aU7^7>y7>59--t£X7°P/U£*'\cD 

[0450] ^-ifx/n/W^t fy^jyfmt 30 
t S7-y 7°7'U- FJgftte)lS*£fiSt1- tf- 

ex7°p/w^sa«ctett2ftfc s pfltsx f u- 

: SC. Stopri. SP. KfcWlSf 5& 
MMg^fkL/cPy-fyytt [SC. Stopub. 

sp. k (Kc) ] fcteffiu HryjjyfmtttT 
>y KMttKimiS^ja-rsiH^tt, 7>y 

-KJHtSEW*fi:«tt1"S3yrW»l±, 9— t:x7 
D/W^O^ma-eBl^btfcnyry^ [SP. S 
to. K (K c) ] ff So 

[0 4 5 l ] ftfes *7?'fVim£t%&£-l*&r3 40 

■c, ^ii73^«ft<> ttj§ii^©affl*fTftoT 
Mt&o ft*, *-ex^o/w^<:o«ji»*«w 

LTl^*Hi£tt, 04 8<DX7-y7 (d 3) O-fe^a 
V t -f 7 >y 7> 5> -9— e X 7°p /U ^©JBItlEW*® 

aswc fftTSP*t)Sxhu-^g 
m-cmmtbxmtZo so 
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[0 4 5 2] ^-exT'n/U^ti, 

ttts 0 

[0 4 5 3] (d6) W 1 'Jf^77'|iI» 9" 

- IfX 7P/ W » F> CD 7 y 77" U- FJittSEHW ( A 

ft) jWB©feftfcHW**»0» 7*-V'yhS| 

jttsiw b /t a 2 o ©saa7 a - 1 nmv> ~>-7 y x 
*v7<Dfflumt. mimww (ao rt©AC6a## 

%t5ft^c:i:*W$Lv\ ftfc\ ii£D^§I^IiE«Mo 

[0 4 5 4] ( d 7 ) Htt KHffOttKK: J; <0 , SttSE 
L & £, ft * ^ Wa'Jf^'V 

T'OSiJWSPlix 9--ex7P/U^c^LT7>y7°yi/ 

- F J!ttSEifl«£<i«fB*2£f§ ^ , (d8) 7v^U 

[0 4 5 5] S£fc, ■b+a'Jrwf-yT'Offlffliffia, 
7 -y 77 FBfttPJl*^ ^ 7 7^ > § 

7-^ytf-F5aa©!¥ffl«, 5fetc0 3 7~0 4 1^: 

[0 4 5 6] Ki(Dfflia0> a— «f7*/UXli, t 
■e{c««ftSSttlEW»KS^V>T«ffeft7-y7 , ^U- 
FHttEWS*^ t, 7 -y 7^ KJHtSEWSKfl! 
o fef ijfflsfefttc L fc^'o fc p yy-yvm Uffl*^ i: ft 

So 

[0 4 5 7] [•r-*/W*7>y7*5J:tf'JXF7Sa 
g] 3— ex7P/W^e»AL, -b^a'J 
7 f f--y 7«rWTS3— 9*7/WXrt<D!Bit#©(ctSlft 

^7-y7tT*3<oi;*W*LV\ /Vy^7>y7^t 
1S?fiKli, MSftTfeV^^^, -b+a7t{S^bft 

itfttfvHtft^it^sso asftTtv^vm^^ji, 

a 7 \zm$? Sit « k W*. tf a 'J 7 «y 7o 

■9--t:x7 , n/w^aia«K«tjiSftTv>s-9--tr 

XtaA«!«1«miftffcSo 
[0 4 5 8] ^MItfflEW«> SttSEW«ftH0SE^»IS 
»co^T«, a—Walk /N-F7VX^^777~> 
a ^ t U b fc ^ =e u * - F ft H t ffiStiffi^l&irt 

LT*<^h7ft^T'*So mmmmicitxyryy 
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-zx7u/u?t.<Dmmtf>&mt%'o, copious 

BSEB#{ctWX (Wa'Jf^f-^) OEStttffi 
B S n 5 © t\ n y r y y flCREK * m £ ft 5 c £ 14 * 

=r> U XO-b* a. V f- -f * y L , ofu^ t fc 

[0 4 5 9] LfrU •fe+a'J'T-rf-y^rtOffiafffi* 
(CHS LTt4, f-y^y 1) OX b U-^Kt*a7lcffiit 

-ex:/n/W#W!IIIWfcl4, +J— exy*a/W^i: 
Ofl5fSKBc i #g& I Dim H'tffR, 
*8ffl£nT:ioD, £ti&tt»H#fc«a"f5<:i:£ISih 

0>*v 97 fl|Hf{tLT*J< cfctf&BT* 20 

[0 4 6 0] a-tf tf|MMi#fcr >#5 U OX b U- 
j>£l&Hbfcl§£, X b U-i^7-V70Mc£ Df 

-^sa*«-r§Bt^fb-eaic»^^v\ sfc a- 

*M t f 5 £: , a— «f tW Xfr $ 0 fti L <fc o 
p/ W y:waHi3£T- *£WT Sff! 2 O-fe^a U tV 7* 

U OX b Iz-^fciMMW*'^ ^77 7r-* £ UT 

IBflt £ 1" £ i: i: t> K , a— If r > W X£fi8#f S a— tf 
g#ki/XrA*;l/^OffnJ&< DXb7lr, ffio-fcr* 

f-?io«f, 'J x b7ti-t#- h-tyzicis^ 40 
TO^fT^i: tfco 

[0 4 6 l] a-+fr/WXrtT5l^%tffg 

fe^T, •r'-^0/^yy7y7 , --9--(i'X^Ji#^L, & 

**JBI^Tt-*«IB, t*t)^UXh7J!lS^*fTt 
3 0 'JXb7{4, "9-#-Hry^-KTfilf\ r>*7 
UOX b l/-^&f-^^ttiL> a— *fr/UX 
O-fe+aUx-i'x/WXtWLT-ry^-h'r^ittai: 50 
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LTHfT-T^c JUT, ■tf-tf-b-fe^fc.fcST-^y 
y 7 y y*Saa, *5<fc tf U X b Tffiafcov^TlttWr 5. 
[0 4 6 2] 0 4 9fC, a— ^rVWXrtOlgm'IffSO 
/ < y * 7 y 7*5!La, b -fe ^ # fc*5 # 5 U X b 7® 

[0 4 6 3] 0 4 9tC*5^T, a— «fr/VX4 1 0 
ti, •fe^a'J7 L ^f-y7 P 4 1 t+a'Jf-ff 

^•-trxyn/^wi^o^'tffSTSO, -9— e 

^XV-b*^T'fe5c 1:7c, a— !ff/WX©t*a U 

[0 4 6 4] a— a-frVWXOSl, 
^r-^Of^^tciix.. cti6©1WI*a— »ff*/W 
X^no^OHBIfffiWc/^y y 7 y 7LTmt 

-KSiait«f*'5:Hon^fBM*4 2 1 fc|g|fit-§ 0 

^<^g|5ofB1S^4 2 l KtelftU jgSWciSCTa- 
WfBUji^ 4 2 1 frP>a— ifx/UX 4 1 0{c U X b 

[0 4 6 5] -73, t*a l Jr^f77KM?n/cS 
ffiffi*f4, M<DmmmW4 2 2IC/Vy7777f-^ 
UT«#-TSli^ti, a-+fr>WX^*5^T-H#W 
ft«i:LTSU»*»6Av^7y^i: Kb («5i»^) 
M7 77771: KbCioT, &M<D%m 
fflfffi (S e c D a t a) ^Hf^fbb, Bg#{fcr-* : 

[Kb (S e c D a t a) ] i: bTia«fi8i*4 2 2Efi 
^•T^o $6(c, 4fiScb7cA> y y7y7^: KbW^ 
-b-ty^O^raSI: Kp sJCfcoTBS^kUfeBg^a 

7*-* [k p s (Kb)] zmmmmmwi z z 

[0 4 6 6] fflmfc* 2 ZiC^mLfc^mtT-9 ■ 
[Kb (S e c D a t a) ] li, fcfc*JBffl;Stf*4 2 2 
*^=#0#{C«ofci;LTfe, ^0«^OfcJ60^T? 
M/^*7f7l: Kb*% ^-b-by^O^ra 
H: Kp stCckoTBg^ft^nTfc'X /Vy^7y7 
SI: Kb^fr?>/c4btca, u-^-b-ty^o^s 
l:Kss CJSa^fldBffljftMte**©"^ 

jfr5Ea*a-+rfe«#{j: J; 2 O-fe+a U r r 

/ u x s c 1 14 t t a i/\ 

[0 4 6 7] r-^OUXb7 («I0) JBaa, a-9 1 ' 
■9i'b{|iJ/J^9-4-°-b-ty^4 5 0(c^fLT!B'ti^f*4 
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7t©a— •fr>WX#»®LfcJ§£{i> §Tfc&a- 
1fr/UX4 3 0(cWLTHtT?ni.o jc©a— lfr/< 

^ x h-ty^t^LT, na^nfeTc© 

a-+T' r / U x *t L T U X h 7 £HlTf 5 c i: fc bT«6 
£ttT^5£IJIj«fiElB*& U aV'JXh fcggt 10 

^lEx^-rx, Mfrtb^nftr^x, a-+f^c*fis 

lht 5 C i: % BTfll b fc t 5 o 

[0 4 6 8] VX-b-ty* 4 5 OfcfcttSUXhT'fcl 
St±, *1\ a— tf-9-^h*^jM^$tlfcIB'l«f*4 2 
2 ' tftW^nfc-y-*- h-fe^^O^BMI : K p s tCct 20 
oTBl^fbbfcHf^r-^ [Kps (Kb) ] 

LT/Vyi'Ty^KbfcBtDffl-r. M#b 
fzAy i?7y 7"tt: K b fcilffl bT, Ay ^7 y 7Mlc 
ZtmWZtlfcW&Wm&fcr-* ■ [Kb (Se 
c D a t a) ] ©«^{k«ia«r^ff 3Hfr-* : S 
e c D a t a£a— <frvWX4 3 OO-fe+aUf ^ff 
•y 7rt fctSttt 5©S b T^lf $ n?. . U X 

bTMH^-^yXicO^Tti, ftJSfS. 
[0 4 6 9] ±j$bfc<fc?f^ a-lfxVWXrt^M 30 
tf $SO/ %y ? 7 <y 7°r- * <D 'J X h 7 h -b V $ 

m m *b&jw % c t # nmt & 5 „ 
[0470] m 5 0 tc y x b 75aa^o#ie«s*iMw 

5 a— tfrVUX4 7 Ort^Hr^aUx^f-'y^cfeffl 
SftfcSSffifl! $R*/<v *7 >y 7X h U-$>;< rV 7 4 7 
lfclMft-r*. mftLfck?^ i-fr/WXIi, 
y^7yfm' Kb (#il«3fc) *£$U /^y^77 
7H : K bK«fcoT«HB1Wffi (S e c D a t a) %Bg^ 40 
{bbftr-* : [Kb (S e c D a t a) ] Ay? 

oTBf^btrcBg^itr-^ [Kps (Kb) ] &Ay 

[0471] a— iff/wx4 7 o^a*-r*i?oas 

Kit), fcofdi^ a-+f&, /S<y*7 

•yyXM/-^f^7 4 7 1 h-fe^* 4 7 5 

[0 4 7 2] ■9-#-h-b>* 4 7 5fi, «fjS©a— »fr 
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oa- «f > f i V W X *f LT, ^ -y * 7 -y 7X h U- S? * 
rV7 4 7 lOr-^H^fbTUX h7U «WEW*H 
£yxh7bfca— »fr/VX4 7 UXH7tc^ 
fflU;A77777'XfP->7f^74 7 1 fca-lf 
icilSp-t^o ■9-5j?-Hry* 4 7 5 iOUXh74a 
at*5V^T, USHSr/WXtWL/TU X h7Saa*HfT 

—y—>3>uxh ^\©^{c ± i u * jaa^^ff 

*So S fc"9-#-H:^*4 7 5ti, UXh7SaaiC)tt 

[0 4 7 3] 05 1 ^#MLT, 3.— !f«M hT^tf-T 

5 / 1 7 «y 7X h U- xV 7 fcff 5 -f- ^ ^ >y 
^7-y7'^a^-^>'Xfco^T^t?. t > H5 ltt, 

P>/^ y ^ 7 -y T'X b U- v' ^ f-f 7, a— *f-r/W 
Xrt^-tr^a Uf-ff'? 7SiJ«, a— Ifx/WXWIP 

(±fiV7h^x7) (DSaa^LTl/^c $-f> 
(1) a— tfr/^^XSJfPBPtt, Wa'Jf-ffy^l 

wgpfcft u tvvy * 7 -y ^as^^asflt 5o cti 

6 a— Wa~ <fx/WXiloA?ig|5t^-r§a— 9 s 

tc&zrtv try 7mmnfim*Km"3^Tfit>ti2>o 

[0 4 7 4] 7- -<i-v7<r>ffl®mz. Ay 57 

y7mM*%mt%t, (2) Ayy-7y-7°T-$n^ 

mt\mmz>Ayy-7y7m (*-) :Kb*4«-r 

5c XytTVtm. (*-) : Kbl±tf||Alfaa^# 
at ± o T^JjSc UfcSSUSKll^^TfeSt S/^y f 7 -y 

[0 4 7 5] -b+a'Jr^f-v^OfflfflliSti, (3) A 
y^7y^m (*-) : Kb<DM, ^JStfe/^^ 
7-y7» (+-) T\ /W*7v:/f-*©H6Htft*fT 
mmtr—S' ■ [Kb (SecData)] 1:4 

fijc-r^o r-^m^bj&wrsi;, (4) -t 

tayf-ff-yyoMIPStt, /^y^7-y7» 

-) : Kb*-9-sK-h-fe>*<D^lfflj|: Kps^fflV^T 

Hf^fbbTBg^x-^ : [Kps (Kb)] 

[0 4 7 6] ±M9m<D'fa t+a'Jr-ff'y^ffl 
SPfi, (5)Hf€fbr-^: [Kb (SecDat 
a) ] i:> BgWr-* : [Kps (Kb)] 
7-y7xbU-v ? p<f ; V7^^-r5o en?)© 
Saaoft, rty*7V?m. : Kbtt, Wa'J 

[0 4 7 7] J&fe, rty9T'9'7Xbl>—i?*7 t <(71iC 
Bf^fbr-^ : [Kb (SecData)] t> Hl^M 
x-^ : [Kps (Kb) ] £ttMfrf«cf:&<» 

y^rtcDlBti^lS^a-lfTVUX I D, Sfcti-b+a 
U r -f f - 7 7 1 D £ ftj££-£TVVy ^ 7 «y 7r-^ 
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•yrVVfX Ob* a. V fJ^V?) WfrZVX- h*y 
$ lc M ? £ M ft * v h 7 - * * ftL ft V 7 x X h K JS U 
mfimttte*) , /W^7 7^Xh xV 7£ 
3g{tf*<:i:&<, UXh7ffla%^f-r§iii:^pIti 

[0 4 7 8] 0 5 2£#$iLT > -y^-h-b^* 
"Cftfft&Ay *7-y 7X h ly-^rV7fr<50^-y 

^77/f-^owiM(co^tii-r§. *#-r- 

to R#tilLr-*W:, ^v?7V7M (*-) : Kb 

x^mtzntct^trvfT-z ■ [Kb (s e c d 

ata)] t XytTv-fm. (*-) : Kbfctftf- 
Hr>ir04MMI : K p s *fflv^T««Kktfc«»«r 
-* : [Kps (K b) ] "pa&So tuaiUfc J: 7 
fc, -9-,f°-h-by^rt©IB1f^gfC3.--9"'rVUX I 
D, $ftimaUf-ff77I Dfc*tJfr£#T/Vy? 
7 -y 7r-*fcffi£ LfcflWci: Lfc^ti, r-b 
y*t\&, h^eoUXh7«iaU^xXhK 20 

S"3<, * T > iEtt^Sfr 6> £ n 5 Or - * Oil* tti L *7t 

[0 4 7 9] ^-h-b^te, r-*Ott*aiL/0 

tfVX-h-ty$<D£Mm : K p s THf^fbL fc 
'ivVTv'fM (4-—) : Kbr-* : [Kps (K 

b) ] y$-h-tyz<D'mmicftfc?zw®m-- 

K s sT'SWMRL, /V;?77^i(* 
-) : Kb^mtiito S6f^ /^y^7y7"i (* 
-) : KbT-Bg^{fc£ftfc^-y*7-y7r-* : [Kb 
(S e c D a t a) ] ?XDfflLfc/W^7-y7St 30 
(*-) : Kb^IfflLTl§tt»HlTL, /Vy* 
7-y7r-^ : S e c D a t a^KDaJto 
[04 80] ^tc, 05 3*#RBl/C % ^*-Hr>* 

t-nfrfa y x h 7saa©i/-r yxtco^r^-r 

§0 H5 3tt, yxh7«iat«tDr-^%^ 
iWf s if ft fta~ if r/ HxoWa'Jf^'v ^iJ» 
& feitfa— «f7*/vrxw*», +r#-r-by#-y- 

(A A : Attribute Certificate Authority) <D>J&W£ 

511ft- S 0 , W*. « "9"- e X 7d / W ^rt t ffi 
$£ns 0 cc-pjRttttimHIfTJitt, a.— Ifr/WX 
co -tr * a >J f f y 7 ft 0 * * U fc -9" - M X 7° a / U # 

%mmm*£f&?zfttb<Dmmmmx*$>Zo 
[0 4 8 i] wMLft&dic •9-- trx^n/w^a 

x^mnmmmmxh y , Htttif$B7 kk 

tt, *)—\£X7u;Umm? (ID), ^-(d~x7a 50 
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>W#- *-A, JaaHfil : ^'JWOtfe M«rY 

x: ^^y^o^x^ie^^nsc 

[0 4 8 2] 05 SOPHS'— fryXICOVvrlWff 
5 C S-f, (1) a-ff/WXMa»^+a'Jf 

-c x «y rmwmcm, x y x h 7saag*# w*i * n 
-tfr/^xfiiwATjSPtwLT^fi-s u x h rmm 

[0 4 8 3] Wi'J7^7 7S1» (2)3.- 

( 3 ) -b * a y f f r >v 7 -9 - e X 7 D / w o ffi 
sKieaafcHfT-rSo ^oiisiiiisaaa, 

LfcH 16CTLS1. 0tta$fc«> ^OffiOTa^ 

§ 0 COtBS^aEJaattsv^Tti, fBScD^Pjflgtira» 
OtftBEjb^^n, ^SfcjSLJT^-hiBiES (CA) * 

x <D£mMmmmmm w t «ie ? n s . c ©siEjaa 

(cfc^T, t+aUf-cf-yy't, •y-jp-h-fe^^Ji-b 
■r>a>l (Ks e s) %KWT5o fflSESEftMuf 

a i: , ^t, (4) Wa'jf^y ^MfliaJii, -y^ 
- h -b > ^ t w l r y x h rwm&zmmt %> . 

[0 4 8 4] ^#-r-by*{4, Wa'Jf^f-y^ 
6©yxh7fflaS^SM-rai:, (5) /^>y^7<y 

7*r-#o&ii5&a£fT&-5o ^nt±, -y^-b-by^ 
^\ 3.— y-y-r h- *» ^/^y ^ 7 >y 7r- * %S«Sf*-p 

[0 4 8 5] ^-h-fe^^tt, ^(C, (6) **'Jfc 
«WffifflBttlEW* (AC) cD%fTS*^SttIIBH*% 
fT® (#?*S) tc^LT5M{i-r§o (7) SttaIH« 

(ac) (DmmxzgiELfcmwmwK^x&z 
m&mmmuM (a a) j±, ^^y^wsfflStttiE 
mm (ac) ^^BK-rsc a*, fittsn* (ao 

^*«ttSEW»i8K^ (A A) fr6«ff*S»tT* 

[0 4 8 6] ^*y««flifiifflJittiEW«fi, «tt'fS« 
7^-;VH(c> -y-tfx7n/V*1WJ? (ID)-* 

-ex7n/^x • umm ■ ttvwm 

(Dxho, 0ij^tf#-y-exya/w^osa©Tt58 
ff?n«o sfot, yxr-7*aatf l-ow-ex^P 

/W^a^«rtOr-*KOI/>TO*^lfT«n5li# 
ti, l^t'J ^R«St«fflSttIiEB^#(c cfc D -b* a »J 
r f r -y 7SiWrt <D * * y K 1 ocD+r- tr X 7n ; u 

j^mmtwjs sn, r-# o y x h 7 # utr s na 
v^Tyxh7%nff-r5«^ WRo^tuwwws 

ffl«ttIP^#Ollff Wa'Jf^ff 7$iJ» 

surto^tu tit^-y--ex7'D/w^aM^a 
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[0 4 8 7] ( 8 ) m®m*%ft%-e&zm®mm 
mm (a a) g&LrzWJwmmm&tm 
m (ac) zvx-Y-byty-AKmmtZo 

(A A) *^^tUlig«««fflJl14SEW* (AC) 
flW*fc, (9) Sttsim IMTfrtytTy??- 
m+a'Jr^7 TfflfflWcHUa? 5c / W * 7 >y 
^^'JjgJasSfSfflJBttlEWS (AC) tJ: 

tf, tf-exyn/W* (SP) ttJSffiffiti, ^-ifX 
7u/U? (SP) *»SX h U-tfiMML ^Sil'ff 

[0 4 8 8] (1 0) ^^VT^^-yfmmmts V 

(ac) fc§{rr«fc, sttiiHMco^wi^R-r 
-tsn^o i^&E&ate, Wx^t^tfc0 2o 

[0 4 8 9] £P>(C, ^S^JSUT-b+ayr-ff-y^ 
<D$iJ»ffl5«, SttfPJi* (AC) rt<DAC«8#0&IHJ 

im'&mm (ao ©«fT#©Mias*^Bi*^fcs 

Jf£lc«, HttfEHB* (AC) 05SfT#O^M»SEW* 
tofciflEfctr * o c (c =fc o T, ISJiEJgOiMfM* 

ssji (ca) (DffiyLrc&mmmimtotmzvnft 

[0 4 9 0] (11) Jlte SEUHSOfcHK * D , KttSE 
^OWlP»tt % ^^UtMWSffllttllB^* (AC) tc 

utc^-exyp/u^iaffi^ss-r^o (12) 

[0 4 9 1 ] l-X±0©atc<J:t)> a— tfx/WX<D-b* 

fc^y*7y7T-*tfteffl;£ftS. 

ex^n/ V ^WaMcftSt S'W 7 7 >y 7r- 2 

%>o 50 
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[0492] ±M©5aa^-^yx©fs, 

[0 4 9 3] [§xyfYf^©M] ±a5Lfc 
pyr> > y?iJfflWa^XrA%1iiSc'r§^xyx^r^ 

gffiT'U X £ LT«a-tf tWX<Z)*J«0IJ*H 5 4 

[0494] a-w/ux^r-^saa. mmttmfi 

tic pu, +)--id"X7 p D/V^ffli:jifinIt^3iff^ 

a*flt*fc p c m<DT-^mm^mcx^xmmti c 
054 t^-Tr/^-rxs^ja i owif^ ti > f/W 

jRSttS 05 4 fcjjVTCPU (Central p 

recessing Unit) 501(1, §S77 p y ^r— > a yfu 
OS (Operating System) %mftt%7v-t 
y9-ea&So ROM (Read-Only-Memory) 5 0 2 (i, C 
PU50 1 A^URf S^P^A, *5V^i}8S/^^ 
-^^LTWH^X-^^^So RAM (Random A 
ccess Memory) 5 0 3 It, CPU501 ©IllCfc^T 

ntf^ns^p^A, feitfyp^Ajaatcfti^T 

[0 4 9 5] HDD 5 0 4 Kr-f X^fWffll*^ 

«otsttfis«i:U'ro^ ; ey, sw^^r^c 

[0 4 9 6] /^X 5 1 OfiP C I (Peripheral Compone 
nt Interface) /^X^tci; O^fiScSn, ^->*a-;K 
AtiJyi^y^^x-XS 1 l«^bfe*X¥*SHi:o 

[0 4 9 7] A^SPS 0 5ti, 0IJ*.tf*-#-r-\ $4 
VT4y?T'W7.mz£v-Cmi&-£tU CPU50 1 

-fx^w^r-fey, §a'ri?g%r+xrf rctt^^- 

[0 4 9 8] minffi5 0 7 itT^U 7,<DmULfc^yT 

-ff-f, ctx. e x 7°p / u ^ ©aft $aa%^ 

frU CPU501 ©SJP^Tt, #|B«fiP*^«l&? 

nfer-^, p u 5 o i tioTjaa^nfe 

[0 4 9 9] F7-T7'5 0 8tt < 7n7^- (S^S 
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W) rVX^, C D-ROM(Compact Disc Read Only 
Memory), MO (Magneto opticaDfV X£, DVD (Dig 
ital Versatile Disc), JKStr-f X4\ ^HMMtUfc: 

Yv-Cf^h'Os #'J A-^7;l/3Efi$8{* 5 0 9^e>© 
7n ?7A3:fc{±-r-*if£, U A-^7;HBIi${# 5 

[0500] mmummmftrc-?v?7i±%rc& 

r-*£ic#tBLTC PU5 o l fcfeVTHfrSfcti® 
a*frft3*£tt, S^tfJLfcTW^A, 7*-*tt>f 10 

ftX^Z R A M 5 0 3 \CimiZt\Z>o 

[0501] ffii&(Dmmfoic^%ft%^~if7>'^^ 

mf 3 HmZMft 5 kVXOfn 9? AtiW* l£ R 0 M 
5 0 2£f&Mi£ttTC PU 5 0 1 tCtoTjaSStlS 
*>\ Kr^X^ tt&tt^tlHDD 5 0 4£ 

/rbrc pu 5 o i icffl&ztiTnnznZa 

[0 5 0 2] ^W^XfAOi^yf-ff 

-YT'SS^-vfX^n/U^ tftf-Hry*, nyf 
yy^'Jx-*, SttlPM^fM^tD^xyr^f-Y 20 

c n 5©x yr-r x-T «ffl;Lfcf 0 5 5 KM&k <k o Tl| 
3!T5Ci:tfT*t5o 125 5£jjVfT-*J!lgS 

[0 5 0 3] 055 CPU (Central processing 

Unit) 6 0 l ti. ^ar^Uy-^aVyn^A^ 
OS (Operating System) ^rURgfC^fff ROM 

(Read-Only-Memory) 6 0 2 fi, CPU601 hWfit 30 

— ^^tS*ft1"5o RAM (Random Access Memory) 6 0 
3fi, C P U 6 0 l O^IKcfc^T^tf^tl^yny^ 

A, is&xfyufyLimKiis^xms&ittzrfy* 

-?OMx'J7, 7-*fi|«fcLTffi/BSttSo HD 
D 6 0 4 «a- KrVX^£0ft!iJ®^Mf Kr-f 
X * 5 * , -9x1 9 ©J&WJ&Sfe £ tf 

K*mu«ia%^fT-r«o B^&a?iB6o sa, iMfs 
exit, yfewsfrwtwfe&a.—A/t Lfei^iL 40 

f\ ^tfBg^S7"n^-7A£R0M6 0 2fc:t&IA . 
U CPU 6 0 l^ROM«ftt7 , n^7A*K*ttibT 

[0 5 0 4] K5-f7*6 0 6ti, 7a-y e— r-f X$N 
C D — R 0 M (Compact Disc Read Only Memory), MO 
(Magneto opticaDrV X?, DVD(Digital Versatil 
e Disc), SS^rVX^, JWW***ya£0UZ»-/* 

7;HB§i$f*6 0 immm^Wnt^ Yy-<9Xh 
D, &UA-^7;l/iH®«tt6 0 7fr&©7W7A3: 50 
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fctt-r-#3£> U A-^7;HBti«{*6 0 7 t»-T5 
7a ^5 A* fcttr-*«*ft*^fff So &fB««£Mc 
IB§i£ fttc 7p ^5 A S fc « r- 2 £H#tB LX C P U 

6 0 iicft^xmntrctewmzftfto^t, m^ta 

LfcTW^A, f-?tt/W6 1 0%^rbTfi»JAtfJS 
g?nWSRAM6 0 3, iH3g&6 0 8, fflflg|36 0 

[0 5 0 5] lflg|56 0 8, Mfigl36 0 9ft, ^tl^ft 

SbTSROJimaP^K^^M^tTI/^So 011*. (ftf 

jiff, flfiTj a 3 y9 yy tvx.-$t aymmmmzm® 
$n^o ^mm^irLxmmm^-MmwM.. nt*§ 

[0 5 0 6] tu}ZnLfc^rt{c^sn5+)--ld , x7a/^ 
-f£\ *J-#-r-fey*, ny-ryy^Ux-*, SttfiE 

b^*%ItS -r s r - * j&ssbk: *3 ^ § # «ni* 

Mf'T5fc46©7 , n^vA«fi»J^(f ROM6 0 2lC|&^ 
^nTC PU6 0 lfc£oTiaSI£tlS)b\ 
-Kr^X^tt&WSftHDD 6 0 4£/rLTC PU 6 

o i fcwt&snriiff «n« 0 

[0 5 0 7] JiLt, #£©^SS0J*#H8Lfctf6, *» 

£?1i&t,\ *56W©Sl% ! PJ»ftSfeJ6fe:f±, IRK 
IB«bfc#aW«IEH©ffii^#ST^tT$»^o 
[0 5 0 8] fcfe, W3ffl**JC*5V^TSiWL/c-»0ffl 
ati/N-F7x7, SftliV7h l ?i7, 

n ft n > e a - £ rt © ^ U -r y x h - ; I/ L T H f f t 

tc7n ^5 A^-r yx h -)\> hXWrs c ttf 

[0 5 0 9] «|Af^ 7n^Aii!Bii®{*t UT<0/n 
-Kf-fX^ROM (Read 0nlyMemory)tC^46|3ilb 
Xl$<£tWX°%%o fe^VHi, 7n^7A(j7D-yt£ 
— rVX^, C D - R 0 M (Compact Disc Read Only Me 
mory), MO (Magneto opticaDrV X^, DVD(Digit 
al Versatile Disc), SSftxVX^, ^^^U^H 
fiOU A-/^7;HB®«f*t-, — ^W»5v^f±*IKWtfe 
m (MB) LXtStCttfXZSc d©«fcdftUA-/^ 

[0 5 10] *io, ~7u9yk.\Z. ±$Lfccfc9&yA 
-/^7;H3l»«f*^ 5.3y^a-^t^yxh * 

ffi, 9t?yv-Y*MVftt>, ^y^^-^immkm 



Ill 

LTcOs LAN (Local Area Network), 

IeJMU nytfa-^THi, *■<£>«}: 3 fcLTfi&snT 

[051 i] ft*, wjffltftgBii^nfe^aosaafi, 
x^Thtit, mL<omwmwm%&m®x*h*), 10 

[0 5 12] 

y PSSI->xfi,, ^ yfy yfiMISWa^ 
7i.{c«tn{^ Hl^fbnyf y\yoSE{8£l7ftv\ 

dnyf-yyfiJfflWISSEiiliSfcSflU SfBL-fcnyf 20 

$B%^H LfcTv 7>fU- F a yf- y 7f UfflfflPSIIB^ff 

<DX\ a— 9*1f «43«fetfa— If ©3 WA1ffffi« 
3>fy y I iJffl*W®SEW»^ 5 set: njffi t * 
u > is*n>fy y f >Jffltti8« *rt 5 a— ires * c 

HCflr- * -9— IfX^P/U #mx*3-—*f %K 
iESfta— *ffc«t*nyr>y© 

[o 5 l 3] #fga£cDn yfy y#Jfflf§ITOl 

yf- wmRmmfflm<D%M. * feti^ >f y y 
m^m d © 3 mmfS(o&m<D^r £ < ^ & ^-rn^^T 

m^^Ltcuy^y^mmmmmm^mit^ c 40 

£ BJ fig t & t) > ayr-yymmcm^ fUffltt ffi* 
[0 5 l 4] S£(c, ^JgBflOnyf y^fOfflffifSWa 

■>xfA pyry^fijfflwseam fciy'ftw 
uyy-y^Amnmrnm^^t^m^t brc<ox\ ■ 

&mm<D$mM$*m-D ayf> nyf> >yf"J 
B*IBKifl»fc*"3^T£ < S£ S t fc 3 y 50 
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7-yvmmmwmm*?m?% c i:*™^^ d, 3 
[0515] seic *%w©3^r>'yfijffl«iiaea 

yf >7 mmmmumwicmte ntc u yf y yumtc 

M~3^X, ^ayT-yv^mtm-OMS^yf-yyt 

Lxmmnm-r^^^mt^^yy-yy^ms. 
yf-yvmmmmw9*7 y ~?v u- f 3 yf 

yyfUffl WIB^i: LT4j»U a— if^WXtW 
LT&Mf Lfc©T\ a— ffifSWsitfa— If 
on yf y y|IA1Wi*3 yf y yfWfli KSEW*ft> 5 
^f-rsctA^piflifcao, lES&nyf y^iUfflfiPi 

*WtSa— if-pfeSi: fcoaBtfW^K^ffStt, a 
— if on yf y y »A1S«*> •9— tf X7n/ W #~§jt- 
a— 9*Ste«Wrs«:4:ft<, iE^^a— »f{c*frsgf 
fc^nyxy^cDM^a^fTf^i: tmmt% 

[0 5 16] ^Stc, ^^onyryyfiJfflffilSBa 
■yxfA, nyfyyfflWim feJctflfffiffi 
asi, Mmcnytfa-^ • yu^vAtintf, a 
yf y y fiJffl«illSEW»tc, sn yfy yfiJfflflilBSEW 

m(omn^yT^T^<on^m^itimL, uyf-yy 

yxyyofiJffl^T^bn^ortltt^^t^c 
[0ffioffi¥^ii0^] 

[H i ] ^fgH^onyxy^fijfflwa^xxAiMcoia 
[H 2 ] *»3yf y^fijfflsa^X'r Atfevr 

[0 3] ^HBflonyf-yyfiJfflwayxrAtcfcv^T 

im 4 ] yf y ^fij^wav-x-r a(c*sv>t 

[0 5] *«?i03yf yy^ijiwa-yxf At*5V^T 

m 6 ] a— -9* -r / W X fcfelf 5 -fe* a U f f y 7<D 

mi£tt*tMf$.®x-&%c 

[H7] n-^f/^xrt-eosaaw^^^si^r- 
2%7fitMx*h%o 

[0 8] igKtfffg (/U7- f) <Dmm&m&m<s- J r 
y7.*Ktmx$>%o 

[0 9] niiE'tffg (^x7-f) <D^H»y—7-yx 
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[010] 8KI1HR (^77- F) (DmW^y-'ry 

hi i] mmm k) tvx^uy-K 
[hi 2] vx^/«7- FoBB^saatco^r^-r 

[01 3] vx^^xy-KcoS^fMSv'-^vx^ 
*f 0T*&5 O 

[014] v7.^/^x7-Kowmjaa^-r7P-0 

10 

[015] mmmm uo ^yf^ygua 
a~>-^>x^f0-c ; fe§o 

[016] ffiS^SE&a<DftT*fcS T LSI. Oa^F 
[01 7] 7*-*&SfcSEte»ffltSMAC©£j£«ig 
[01 8] J8tt5E0« (AC) (DfgR»>-^VX% 

[019] a«4fiR«iaoeijtf*« ecds as«£# 
[020] g^^sEsaa<oM"e*s ecds aw^^se 
[021] temmmrn cpko ^kmw (a 

[0 2 2] ftMHEHft (PKC) ©r«I7n-^ 
0T*fc5o 

[0 2 3] UttSEE* (AC) ©^EJaa7n- (ft 

1) ^t0T'l>5o 

[02 4] BttlEfW (AC) <Dffii9m7U- (ft 

2) *^BS-e**o 30 

[02 5] m&mwm (ao fcfu/iLfcpvxyyfij 

[02 6] m&MW9 (AC) fcfijffl Lftnvf V7fiJ 

[027] yn-/wwiiKJ:«3>f yym<o^ 
itT-zzftMLrcmmmm (ao ^fOTLfcny 

[028] ^D-/^«ji8i<oHifiaa^^-r5^- 

[029] ?u-;wnmm<DWgi9mzwmt&is- 40 
y>x0-e$>5 o 

[030] T^-^m^rcmmtumic-D^rmmt 
[03 1] x3-^%ffl^fc«^fb©a^-^>xtco 
[0 3 2] r3-^ffli/^fc^bJ!ia7n-lcov>T 

[033] ^-^y'tUT.mKmzm'&mm (a 
[034] mmmm (ao mmLtty?<<ym 50 
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y7W3^a£t^t^>-^yx0T? 

[03 5] (AC) *«fflbfc*y5-r^@ 

[03 6] (AC) *%MLrc*77'fyW 

[0 3 7] *7y^y®mm=iy7-yyicttifc-t%m 
flMwax-*^^- Fjaa^SiwrssT** 

So 

[03 8] *77jy®W&m^yTyv\z.ttfctz>® 

ffl @SfIf- jHDT-* «$ft 0 t? § c 

[03 9] *7^y0&»3yry7fc*fJfrf5fiJ 
[0 4 0] ^7^-Yy|ll^SlJffi3yf->7^j£-r5/N 

7 ^ a ttwasMffl mftwar - * <*k f &a 

[04 1] ^77-ry[iif(SiJPl3>r>' , yfcWjs-r§^ 
•y s> a fflff asofjffl mmm.T- y$- v mm 

[0 4 2] *77>ry®aS!lRi3>"f^y©JBttiEW* 

%5gffl tfcp yf- yy$mwm*Mmtz>mx&z>o 

[04 3] *79-l'^BI»ffiiJIS3yf->"ytWiS"r«lHl 

[044] ^77^ynia$ijPiny7 : -y7fc«jS'r?>/A 
■y a fltffasoieissrtiar- * nmR'&Wkwm? % 

0T*&5o 

[045] ^•y^-ryWTORiJBttSE^^-T.fcL 
[04 6] ^y7^y@MSHttM«^-7i:t 

rjiffl l it 7 y 77 v- vmmzmit s %° 
[047] *7^y®m®mm®.mwmz^-x£h 

[0 4 8] 7;l/^APAS07y77'V-F»£!£W 

[04 9] tf#-F*y*fc£ST-*UXF7ffla<Z> 

[0 5 0] tf#-h-fey$rfc«fcSr-*yxh7a&g£> 

[051] a— *f r> Vf XdiJT-Uff -f 5f-^^7^7 
-y 7Saa^-^7£!ftH)lf 30t?£So 
[05 2] ^-F^y^KJ^W^yTT-*^ 

[0 5 3] ^^.-h-ty^icx^T-^vxvT^y 
-*ryx*mmtzmr>3b%o 

[0 5 4] a-Hf7VU7cDf|j£ft%/iVf0T&&o 
[05 5] tf- e*7n/vf* ^#-F-fe>*, P> 
•f 7 ij x- T^O&x y f -c r W offiSM *mt 0 
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1 0 fi 
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ROM (Read-On ly-Memory) 


1 1 0 


H#SEHH# 


5 0 3 


RAM (Random Access Memory) 


2 0 0 


— u / / ' » 1 / > 
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1 4] 



Ver 
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version 






serie Number 




V-1 


signature 




issuer 






validity 
notBefore 
notAfter 






sutyect 


umwmmm* 




subJectPubfldCeylnfo 
algorithm 
subJectPuWIckey 


ft 



S101 



— MPi 
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02 
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